CVE-2014-4157

Severity

46%

Complexity

39%

Confidentiality

106%

arch/mips/include/asm/thread_info.h in the Linux kernel before 3.14.8 on the MIPS platform does not configure _TIF_SECCOMP checks on the fast system-call path, which allows local users to bypass intended PR_SET_SECCOMP restrictions by executing a crafted application without invoking a trace or audit subsystem.

CVSS 2.0 Base Score 4.6. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:P/I:P/A:P).

Overview

First reported 10 years ago

2014-06-23 11:21:00

Last updated 6 years ago

2018-12-18 14:36:00

Affected Software

Linux Kernel

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=137f7df8cead00688524c82360930845396b8a21

Exploit, Patch, Vendor Advisory

[oss-security] 20140616 Re: Bug#751417: linux-image-3.2.0-4-5kc-malta: no SIGKILL after prctl(PR_SET_SECCOMP, 1, ...) on MIPS

Mailing List, Third Party Advisory

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.8

Vendor Advisory

[oss-security] 20140617 Re: (Linux kernel) Bug#751417: linux-image-3.2.0-4-5kc-malta: no SIGKILL after prctl(PR_SET_SECCOMP, 1, ...) on MIPS

Mailing List, Third Party Advisory

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=751417

Issue Tracking, Mailing List, Third Party Advisory

https://github.com/torvalds/linux/commit/137f7df8cead00688524c82360930845396b8a21

Exploit, Patch

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.