CVE-2014-8159

Updated: 2024-07-12

CWE: Permissions, Privileges, and Access Control

Description:

The InfiniBand (IB) implementation in the Linux kernel package before 2.6.32-504.12.2 on Red Hat Enterprise Linux (RHEL) 6 does not properly restrict use of User Verbs for registration of memory regions, which allows local users to access arbitrary physical memory locations, and consequently cause a denial of service (system crash) or gain privileges, by leveraging permissions on a uverbs device under /dev/infiniband/.

CVSS3:


Vendor State

OS Vendor version Errata
RHEL 6 2.6.32-504.12.2.el6 RHSA-2015:0674
RHEL 7 3.10.0-229.1.2.el7 RHSA-2015:0726
Ubuntu 14.04 3.13.0-46.79 USN-2528-1
Ubuntu 14.04 ESM 3.13.0-46.79 USN-2528-1
CentOS 7 3.10.0-229.1.2.el7 CESA-2015:0726
CentOS 6 2.6.32-504.12.2.el6 CESA-2015:0674
CentOS 7 plus 3.10.0-229.1.2.el7.centos.plus CESA-2015:0726
CentOS 6 plus 2.6.32-504.12.2.el6.centos.plus CESA-2015:0674
Oracle Linux 6 2.6.32-504.23.4.el6 ELSA-2015-1081
Oracle Linux 7 3.10.0-229.1.2.el7 ELSA-2015-0726
Scientific 6 2.6.32-504.12.2.el6 CESA-2015:0674

KernelCare State

OS Original kernel version State
RHEL 6
2.6.32-431.20.5.el6 show all hide all
2.6.32-431.23.3.el6 2.6.32-431.29.2.el6 2.6.32-431.5.1.el6 2.6.32-504.el6 2.6.32-279.11.1.el6 2.6.32-279.14.1.el6 2.6.32-279.19.1.el6 2.6.32-279.2.1.el6 2.6.32-279.22.1.el6 2.6.32-279.5.1.el6 2.6.32-279.5.2.el6 2.6.32-279.9.1.el6 2.6.32-358.0.1.el6 2.6.32-358.11.1.el6 2.6.32-358.14.1.el6 2.6.32-358.18.1.el6 2.6.32-358.2.1.el6 2.6.32-358.23.2.el6 2.6.32-358.6.1.el6 2.6.32-358.6.2.el6 2.6.32-358.el6 2.6.32-431.1.2.el6 2.6.32-431.11.2.el6 2.6.32-431.17.1.el6 2.6.32-431.20.3.el6 2.6.32-431.3.1.el6 2.6.32-431.el6 2.6.32-504.1.3.el6 2.6.32-504.3.3.el6 2.6.32-504.8.1.el6
Released
RHEL 7
3.10.0-123.9.3.el7 show all hide all
3.10.0-123.el7 3.10.0-123.8.1.el7 3.10.0-123.13.1.el7 3.10.0-229.el7 3.10.0-123.6.3.el7 3.10.0-123.13.2.el7 3.10.0-123.20.1.el7 3.10.0-123.4.2.el7 3.10.0-123.1.2.el7 3.10.0-123.9.2.el7 3.10.0-123.4.4.el7
Released
Ubuntu 14.04
3.13.0-39.66 show all hide all
3.13.0-37.64 3.13.0-41.70 3.13.0-36.63 3.13.0-44.73 3.13.0-46.75 3.13.0-40.69 3.13.0-33.58 3.13.0-43.72 3.13.0-38.65 3.13.0-40.68 3.13.0-45.74 3.13.0-46.76 3.13.0-46.77 3.13.0-32.57 3.13.0-34.60 3.13.0-35.62
Released
Ubuntu 14.04 ESM
Ready For Release
CentOS 7
3.10.0-229.el7 show all hide all
3.10.0-123.1.2.el7 3.10.0-123.4.2.el7 3.10.0-123.6.3.el7 3.10.0-123.13.1.el7 3.10.0-123.8.1.el7 3.10.0-123.9.2.el7 3.10.0-123.13.2.el7 3.10.0-123.9.3.el7 3.10.0-123.el7 3.10.0-123.4.4.el7 3.10.0-123.20.1.el7
Released
CentOS 6
2.6.32-279.2.1.el6 show all hide all
2.6.32-279.5.1.el6 2.6.32-279.5.2.el6 2.6.32-431.1.2.0.1.el6 2.6.32-279.14.1.el6 2.6.32-358.2.1.el6 2.6.32-358.23.2.el6 2.6.32-358.0.1.el6 2.6.32-431.11.2.el6 2.6.32-504.8.1.el6 2.6.32-504.3.3.el6 2.6.32-504.1.3.el6 2.6.32-431.el6 2.6.32-358.6.2.el6 2.6.32-358.6.1.el6 2.6.32-358.14.1.el6 2.6.32-279.9.1.el6 2.6.32-279.11.1.el6 2.6.32-358.11.1.el6 2.6.32-431.23.3.el6 2.6.32-431.5.1.el6 2.6.32-431.20.5.el6 2.6.32-279.22.1.el6 2.6.32-504.el6 2.6.32-431.20.3.el6 2.6.32-358.el6 2.6.32-431.3.1.el6 2.6.32-431.17.1.el6 2.6.32-358.18.1.el6 2.6.32-279.19.1.el6 2.6.32-431.29.2.el6
Released
CentOS 7 plus
3.10.0-123.8.1.el7.centos.plus show all hide all
3.10.0-123.6.3.el7.centos.plus 3.10.0-123.4.4.el7.centos.plus 3.10.0-123.13.2.el7.centos.plus 3.10.0-123.9.2.el7.centos.plus 3.10.0-229.el7.centos.plus 3.10.0-123.20.1.el7.centos.plus 3.10.0-123.13.1.el7.centos.plus 3.10.0-123.9.3.el7.centos.plus 3.10.0-123.el7.centos.plus 3.10.0-123.1.2.el7.centos.plus 3.10.0-123.4.2.el7.centos.plus
Released
CentOS 6 plus
2.6.32-431.1.2.el6.centos.plus show all hide all
2.6.32-431.5.1.el6.centos.plus 2.6.32-358.0.1.el6.centos.plus 2.6.32-504.3.3.el6.centos.plus 2.6.32-504.1.3.el6.centos.plus 2.6.32-504.8.1.el6.centos.plus 2.6.32-431.20.3.el6.centos.plus 2.6.32-279.19.1.el6.centos.plus 2.6.32-431.17.1.el6.centos.plus 2.6.32-431.11.2.el6.centos.plus 2.6.32-358.6.1.el6.centos.plus 2.6.32-358.14.1.el6.centos.plus 2.6.32-431.el6.centos.plus 2.6.32-431.20.5.el6.centos.plus 2.6.32-279.9.1.el6.centos.plus 2.6.32-358.23.2.el6.centos.plus 2.6.32-279.11.1.el6.centos.plus 2.6.32-504.el6.centos.plus 2.6.32-431.29.2.el6.centos.plus 2.6.32-279.22.1.el6.centos.plus 2.6.32-358.2.1.el6.centos.plus 2.6.32-431.23.3.el6.centos.plus 2.6.32-279.2.1.el6.centos.plus 2.6.32-279.5.1.el6.centos.plus 2.6.32-279.5.2.el6.centos.plus 2.6.32-431.20.3.0.1.el6.centos.plus 2.6.32-431.3.1.el6.centos.plus 2.6.32-358.6.2.el6.centos.plus 2.6.32-358.11.1.el6.centos.plus 2.6.32-358.el6.centos.plus 2.6.32-279.14.1.el6.centos.plus 2.6.32-358.18.1.el6.centos.plus
Released
Oracle Linux 6
2.6.32-504.3.3.el6 show all hide all
2.6.32-358.14.1.el6 2.6.32-358.11.1.el6 2.6.32-358.0.1.el6 2.6.32-431.20.5.el6 2.6.32-431.29.2.el6 2.6.32-431.1.2.el6 2.6.32-431.el6 2.6.32-358.6.2.el6 2.6.32-358.2.1.el6 2.6.32-504.el6 2.6.32-279.19.1.el6 2.6.32-358.6.1.el6 2.6.32-279.11.1.el6 2.6.32-431.17.1.el6 2.6.32-431.23.3.el6 2.6.32-431.11.2.el6 2.6.32-279.2.1.el6 2.6.32-279.5.1.el6 2.6.32-279.5.2.el6 2.6.32-431.3.1.el6 2.6.32-358.23.2.el6 2.6.32-504.8.1.el6 2.6.32-504.1.3.el6 2.6.32-279.9.1.el6 2.6.32-279.22.1.el6 2.6.32-358.el6 2.6.32-431.20.3.el6 2.6.32-358.18.1.el6 2.6.32-431.5.1.el6 2.6.32-279.14.1.el6
Released
Oracle Linux 7
3.10.0-123.9.3.el7 show all hide all
3.10.0-123.el7 3.10.0-123.20.1.el7 3.10.0-123.13.1.el7 3.10.0-123.13.2.el7 3.10.0-123.4.4.el7 3.10.0-229.el7 3.10.0-123.6.3.el7 3.10.0-123.4.2.el7 3.10.0-123.8.1.el7 3.10.0-123.9.2.el7 3.10.0-123.1.2.el7
Released
CloudLinux OS 7
3.10.0-233.1.2.lve1.3.33.4.el7 show all hide all
3.10.0-223.1.2.lve1.3.22.el7 3.10.0-223.1.2.lve1.3.33.3.el7 3.10.0-223.1.2.lve1.3.33.el7 3.10.0-233.1.2.lve1.3.33.1.el7
Released
CloudLinux OS 6
2.6.32-379.22.1.lve1.2.17.1.el6 show all hide all
2.6.32-379.22.1.lve1.2.17.el6 2.6.32-458.18.1.lve1.2.39.el6 2.6.32-458.23.2.lve1.2.45.el6 2.6.32-458.23.2.lve1.2.48.el6 2.6.32-458.23.2.lve1.2.52.el6 2.6.32-458.6.2.lve1.2.26.1.el6 2.6.32-458.6.2.lve1.2.28.el6 2.6.32-458.6.2.lve1.2.30.el6 2.6.32-531.1.2.lve1.2.54.el6 2.6.32-531.11.2.lve1.2.55.el6 2.6.32-531.17.1.lve1.2.56.el6 2.6.32-531.17.1.lve1.2.57.el6 2.6.32-531.17.1.lve1.2.58.el6 2.6.32-531.17.1.lve1.2.60.el6 2.6.32-531.23.3.lve1.2.65.el6 2.6.32-531.23.3.lve1.2.66.el6 2.6.32-531.23.3.lve1.3.6.el6 2.6.32-531.29.2.lve1.3.11.1.el6 2.6.32-531.29.2.lve1.3.11.10.el6
Released
OpenVZ 6
2.6.32-042stab076.7 show all hide all
2.6.32-042stab076.8 2.6.32-042stab078.22 2.6.32-042stab078.26 2.6.32-042stab078.27 2.6.32-042stab078.28 2.6.32-042stab079.4 2.6.32-042stab079.5 2.6.32-042stab079.6 2.6.32-042stab081.3 2.6.32-042stab081.5 2.6.32-042stab081.8 2.6.32-042stab083.2 2.6.32-042stab084.12 2.6.32-042stab084.14 2.6.32-042stab084.17 2.6.32-042stab084.20 2.6.32-042stab084.21 2.6.32-042stab084.25 2.6.32-042stab084.26 2.6.32-042stab085.17 2.6.32-042stab085.20 2.6.32-042stab088.4 2.6.32-042stab090.2 2.6.32-042stab090.3 2.6.32-042stab090.4 2.6.32-042stab090.5 2.6.32-042stab092.1 2.6.32-042stab092.2 2.6.32-042stab092.3 2.6.32-042stab093.4 2.6.32-042stab093.5 2.6.32-042stab094.7 2.6.32-042stab094.8 2.6.32-042stab102.9 2.6.32-042stab103.6 2.6.32-042stab104.1 2.6.32-042stab105.14
Released
Scientific 6
2.6.32-358.2.1.el6 show all hide all
2.6.32-431.20.3.el6 2.6.32-358.23.2.el6 2.6.32-504.el6 2.6.32-358.18.1.el6 2.6.32-504.3.3.el6 2.6.32-431.1.2.el6 2.6.32-431.20.5.el6 2.6.32-431.11.2.el6 2.6.32-279.14.1.el6 2.6.32-431.el6 2.6.32-431.29.2.el6 2.6.32-504.8.1.el6 2.6.32-279.2.1.el6 2.6.32-279.5.1.el6 2.6.32-279.5.2.el6 2.6.32-431.3.1.el6 2.6.32-279.22.1.el6 2.6.32-358.11.1.el6 2.6.32-358.6.2.el6 2.6.32-279.19.1.el6 2.6.32-431.23.3.el6 2.6.32-431.5.1.el6 2.6.32-504.1.3.el6 2.6.32-279.9.1.el6 2.6.32-431.17.1.el6 2.6.32-358.14.1.el6 2.6.32-279.11.1.el6 2.6.32-358.el6 2.6.32-358.0.1.el6 2.6.32-358.6.1.el6
Released
OEL 6 Dell
Ready For Release
OEL 7 Dell
Ready For Release
Debian 10 cloud
Will Not Fix
Debian 9 backports
Will Not Fix