CVE-2014-7145
published 2014-09-28CVE-2014-7145: The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a denial of service (NULL pointer dereference…
high7.8CVSS 3.1
AVNACLAuNCNINAC
The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a denial of service (NULL pointer dereference and client system crash) or possibly have unspecified other impact by deleting the IPC$ share during resolution of DFS referrals.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| debian | linux | < linux 3.16.3-1 (bookworm) | linux 3.16.3-1 (bookworm) |
| linux | linux_kernel | >= 0 < 3.16.3-1 | 3.16.3-1 |
| linux | linux_kernel | >= 0 < 3.16.3-1 | 3.16.3-1 |
| linux | linux_kernel | >= 0 < 3.16.3-1 | 3.16.3-1 |
| linux | linux_kernel | >= 0 < 3.16.3-1 | 3.16.3-1 |
| linux | linux_kernel | >= 0 < 3.13.0-39.66 | 3.13.0-39.66 |
| linux | linux_kernel | >= 3.11 < 3.12.29 | 3.12.29 |
| linux | linux_kernel | >= 3.13 < 3.14.19 | 3.14.19 |
| linux | linux_kernel | >= 3.15 < 3.16.3 | 3.16.3 |
| linux | linux_kernel | >= 3.6 < 3.10.55 | 3.10.55 |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_hpc_node | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_workstation | — | — |
CVSS provenance
nvd7.8HIGHAV:N/AC:L/Au:N/C:N/I:N/A:C
osv7.8HIGH