CVE-2014-1738

CWE-200 — Information Exposure19 documents8 sources

Severity

2.1LOW

EPSS

0.0%

top 93.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Debian Linux Oracle Linux +5 more

Timeline

PublishedMay 11

Latest updateMay 13

Description

The raw_cmd_copyout function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly restrict access to certain pointers during processing of an FDRAWCMD ioctl call, which allows local users to obtain sensitive information from kernel heap memory by leveraging write access to a /dev/fd device.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages8 packages

▶NVDlinux/linux_kernel3.14.3

▶Debianlinux< 3.14.4-1+3

▶Ubuntulinux< 3.13.0-27.50

▶NVDoracle/linux5, 6+1

▶NVDsuse/linux_enterprise_server11

Also affects: Debian Linux 6.0, 7.0, Enterprise Linux 5.6, 6.3

🔴Vulnerability Details

GHSA

GHSA-949p-32jv-ghmg: The raw_cmd_copyout function in drivers/block/floppy↗2022-05-13

▶

OSV

linux vulnerabilities↗2014-05-27

▶

OSV

CVE-2014-1738: The raw_cmd_copyout function in drivers/block/floppy↗2014-05-11

▶

CVEList

CVE-2014-1738: The raw_cmd_copyout function in drivers/block/floppy↗2014-05-11

▶

📋Vendor Advisories

Ubuntu

Linux kernel (Trusty HWE) vulnerabilities↗2014-06-27

▶

Ubuntu

Linux kernel (Saucy HWE) vulnerabilities↗2014-05-27

▶

Ubuntu

Linux kernel (OMAP4) vulnerabilities↗2014-05-27

▶

Ubuntu

Linux kernel (Quantal HWE) vulnerabilities↗2014-05-27

▶

Ubuntu

Linux kernel vulnerabilities↗2014-05-27

▶

💬Community

Bugzilla

CVE-2014-1738 CVE-2014-1737 kernel: block: floppy: privilege escalation via FDRAWCMD floppy ioctl command [fedora-all]↗2014-05-09

▶

Bugzilla

CVE-2014-1737 CVE-2014-1738 kernel: block: floppy: privilege escalation via FDRAWCMD floppy ioctl command↗2014-05-05

▶