CVE-2014-4027
published 2014-06-23CVE-2014-4027: The rd_build_device_space function in drivers/target/target_core_rd.c in the Linux kernel before 3.14 does not properly initialize a certain data structure…
low2.3CVSS 3.1
AVAACMAuSCPINAN
The rd_build_device_space function in drivers/target/target_core_rd.c in the Linux kernel before 3.14 does not properly initialize a certain data structure, which allows local users to obtain sensitive information from ramdisk_mcp memory by leveraging access to a SCSI initiator.
Affected
40 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| debian | linux | < linux 3.14.2-1 (bookworm) | linux 3.14.2-1 (bookworm) |
| f5 | big-ip_access_policy_manager | — | — |
| f5 | big-ip_access_policy_manager | 11.1.0 – 11.6.0 | — |
| f5 | big-ip_advanced_firewall_manager | — | — |
| f5 | big-ip_advanced_firewall_manager | 11.3.0 – 11.6.0 | — |
| f5 | big-ip_analytics | — | — |
| f5 | big-ip_analytics | 11.1.0 – 11.6.0 | — |
| f5 | big-ip_application_acceleration_manager | — | — |
| f5 | big-ip_application_acceleration_manager | 11.4.0 – 11.6.0 | — |
| f5 | big-ip_application_security_manager | — | — |
| f5 | big-ip_application_security_manager | 11.1.0 – 11.6.0 | — |
| f5 | big-ip_domain_name_system | — | — |
| f5 | big-ip_edge_gateway | 11.1.0 – 11.3.0 | — |
| f5 | big-ip_global_traffic_manager | 11.1.0 – 11.6.0 | — |
| f5 | big-ip_link_controller | — | — |
| f5 | big-ip_link_controller | 11.1.0 – 11.6.0 | — |
| f5 | big-ip_local_traffic_manager | — | — |
| f5 | big-ip_local_traffic_manager | 11.1.0 – 11.6.0 | — |
| f5 | big-ip_policy_enforcement_manager | — | — |
| f5 | big-ip_policy_enforcement_manager | 11.3.0 – 11.6.0 | — |
| f5 | big-ip_protocol_security_module | 11.1.0 – 11.4.1 | — |
| f5 | big-ip_wan_optimization_manager | 11.1.0 – 11.3.0 | — |
| f5 | big-ip_webaccelerator | 11.1.0 – 11.3.0 | — |
| f5 | big-iq_application_delivery_controller | — | — |
CVSS provenance
nvd2.3LOWAV:A/AC:M/Au:S/C:P/I:N/A:N
osv5.5MEDIUM