4.6

CVE-2014-2889

Off-by-one error in the bpf_jit_compile function in arch/x86/net/bpf_jit_comp.c in the Linux kernel before 3.1.8, when BPF JIT is enabled, allows local users to cause a denial of service (system crash) or possibly gain privileges via a long jump after a conditional jump.

Data is provided by the National Vulnerability Database (NVD)
LinuxLinux Kernel Version <= 3.1.7
LinuxLinux Kernel Version3.0 Updaterc1
LinuxLinux Kernel Version3.0 Updaterc2
LinuxLinux Kernel Version3.0 Updaterc3
LinuxLinux Kernel Version3.0 Updaterc4
LinuxLinux Kernel Version3.0 Updaterc5
LinuxLinux Kernel Version3.0 Updaterc6
LinuxLinux Kernel Version3.0 Updaterc7
LinuxLinux Kernel Version3.0.1
LinuxLinux Kernel Version3.0.2
LinuxLinux Kernel Version3.0.3
LinuxLinux Kernel Version3.0.4
LinuxLinux Kernel Version3.0.5
LinuxLinux Kernel Version3.0.6
LinuxLinux Kernel Version3.0.7
LinuxLinux Kernel Version3.0.8
LinuxLinux Kernel Version3.0.9
LinuxLinux Kernel Version3.0.10
LinuxLinux Kernel Version3.0.11
LinuxLinux Kernel Version3.0.12
LinuxLinux Kernel Version3.0.13
LinuxLinux Kernel Version3.0.14
LinuxLinux Kernel Version3.0.15
LinuxLinux Kernel Version3.0.16
LinuxLinux Kernel Version3.0.17
LinuxLinux Kernel Version3.0.18
LinuxLinux Kernel Version3.0.19
LinuxLinux Kernel Version3.0.20
LinuxLinux Kernel Version3.0.21
LinuxLinux Kernel Version3.0.22
LinuxLinux Kernel Version3.0.23
LinuxLinux Kernel Version3.0.24
LinuxLinux Kernel Version3.0.25
LinuxLinux Kernel Version3.0.26
LinuxLinux Kernel Version3.0.27
LinuxLinux Kernel Version3.0.28
LinuxLinux Kernel Version3.0.29
LinuxLinux Kernel Version3.0.30
LinuxLinux Kernel Version3.0.31
LinuxLinux Kernel Version3.0.32
LinuxLinux Kernel Version3.0.33
LinuxLinux Kernel Version3.0.34
LinuxLinux Kernel Version3.0.35
LinuxLinux Kernel Version3.0.36
LinuxLinux Kernel Version3.0.37
LinuxLinux Kernel Version3.0.38
LinuxLinux Kernel Version3.0.39
LinuxLinux Kernel Version3.0.40
LinuxLinux Kernel Version3.0.41
LinuxLinux Kernel Version3.0.42
LinuxLinux Kernel Version3.0.43
LinuxLinux Kernel Version3.0.44
LinuxLinux Kernel Version3.0.45
LinuxLinux Kernel Version3.0.46
LinuxLinux Kernel Version3.0.47
LinuxLinux Kernel Version3.0.48
LinuxLinux Kernel Version3.0.49
LinuxLinux Kernel Version3.0.50
LinuxLinux Kernel Version3.0.51
LinuxLinux Kernel Version3.0.52
LinuxLinux Kernel Version3.0.53
LinuxLinux Kernel Version3.0.54
LinuxLinux Kernel Version3.0.55
LinuxLinux Kernel Version3.0.56
LinuxLinux Kernel Version3.0.57
LinuxLinux Kernel Version3.0.58
LinuxLinux Kernel Version3.0.59
LinuxLinux Kernel Version3.0.60
LinuxLinux Kernel Version3.0.61
LinuxLinux Kernel Version3.0.62
LinuxLinux Kernel Version3.0.63
LinuxLinux Kernel Version3.0.64
LinuxLinux Kernel Version3.0.65
LinuxLinux Kernel Version3.0.66
LinuxLinux Kernel Version3.0.67
LinuxLinux Kernel Version3.0.68
LinuxLinux Kernel Version3.1
LinuxLinux Kernel Version3.1 Updaterc1
LinuxLinux Kernel Version3.1 Updaterc2
LinuxLinux Kernel Version3.1 Updaterc3
LinuxLinux Kernel Version3.1 Updaterc4
LinuxLinux Kernel Version3.1.1
LinuxLinux Kernel Version3.1.2
LinuxLinux Kernel Version3.1.3
LinuxLinux Kernel Version3.1.4
LinuxLinux Kernel Version3.1.5
LinuxLinux Kernel Version3.1.6
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.13% 0.332
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P