Professional OVAL Repository
[Eng]
[Rus]
[Sign-In]
OVAL
Search
Categories
RedCheck
About
OVAL Definitions
OVAL Items
FSTEC Data Bank Information Security Threats
NKCKI
EOL (End Of Life)
Linux Security Advisories
Mozilla Foundation Security Advisory
IBM
VMware
Cisco
Check Point Software Technologies
Apache
Solaris
FreeBSD
Development
GitHub Enterprise
Google Chrome Security Advisories
Oracle Security Advisories
Adobe Security Advisories
OpenSSL Security Advisories
Microsoft
CVE
CWE
CPE
Latest Updates
OS ROSA
ALT Linux
Astra Linux
RED OS
DSA (Debian Security Advisory) Patсh Statistics
DSA (Debian Security Advisory) Patсh Feed
DSA (Debian Security Advisory) Vulnerability Feed
DLA (Debian Security Advisory) Patсh Statistics
DLA (Debian Security Advisory) Patсh Feed
DLA (Debian Security Advisory) Vulnerability Feed
ALT Linux (Security Bulletins) Patсh Statistics
ALT Linux (Security Bulletins) Patсh Feed
ALT Linux (Security Bulletins) Vulnerability Feed
RED OS (Security Bulletins) Patсh Statistics
RED OS (Security Bulletins) Patсh Feed
RED OS (Security Bulletins) Vulnerability Feed
USN (Ubuntu Security Notice) Patсh Statistics
USN (Ubuntu Security Notice) Patсh Feed
USN (Ubuntu Security Notice) Vulnerability Feed
RHSA (RedHat Security Advisory) Patсh Statistics
RHSA (RedHat Security Advisory) Patсh Feed
RHSA (RedHat Security Advisory) Vulnerability Feed
ELSA (Oracle Linux Security Advisory) Patсh Statistics
ELSA (Oracle Linux Security Advisory) Patсh Feed
ELSA (Oracle Linux Security Advisory) Vulnerability Feed
SUSE (SUSE Security Advisories) Patсh Statistics
SUSE (SUSE Security Advisories) Patсh Feed
SUSE (SUSE Security Advisories) Vulnerability Feed
openSUSE (openSUSE Security Advisories) Patсh Statistics
openSUSE (openSUSE Security Advisories) Patсh Feed
openSUSE (openSUSE Security Advisories) Vulnerability Feed
Amazon Linux AMI (Security Bulletins) Patсh Statistics
Amazon Linux AMI (Security Bulletins) Patсh Feed
Amazon Linux AMI (Security Bulletins) Vulnerability Feed
Mageia Linux (Security Bulletins) Patсh Statistics
Mageia Linux (Security Bulletins) Patсh Feed
Mageia Linux (Security Bulletins) Vulnerability Feed
OS ROSA SX COBALT 1.0
OS ROSA DX COBALT 1.0
ROSA 7.3 (Security Advisories) Patсh Statistics
ROSA 7.3 (Security Advisories) Patсh Feed
ROSA 7.3 (Security Advisories) Vulnerability Feed
ALT Linux SPT 6.0
ALT Linux SPT 7.0
ALT 8 SP
ALT 9
Astra Linux SE 1.5
Astra Linux SE 1.6
Astra Linux SE 1.7
Astra Linux SE 1.8
RED OS Murom 7.1
RED OS Murom 7.2
IBM DB2
VMware Vulnerabilities Advisory (VMSA)
VMware vCenter Patch Advisories
VMware ESXi Patch Advisories
VMware NSX Patches
VMware NSX Vulnerabilities
VMware Photon OS 1.0 Patches
VMware Photon OS 1.0 Vulnerabilities
VMware Photon OS 2.0 Patches
VMware Photon OS 2.0 Vulnerabilities
Cisco ASA
Cisco IOS/NX-OS Advisory
Cisco NX-OS Vulnerabilities
Check Point Gaia
Apache Tomcat Advisories
Apache Tomcat Server
Apache HTTP Server
Python
Node.js
RubyGems
Qt
Microsoft Security Bulletin
Microsoft Knowledge Base Article
Microsoft SharePoint
Microsoft SharePoint Foundation 2013
Microsoft SharePoint Server 2013
Microsoft SharePoint Server 2016
About OVALdb
User manual
Pricing
Contact us
OVAL Definitions
>
OVAL Definition Details
Id
oval:ru.altx-soft.nix:def:68196
[Eng]
Version
6
Class
vulnerability
ALTXid
238785
Language
Russian
Severity
Critical
Title
Oracle Linux -- уязвимость в kernel-uek, kernel (CVE-2014-9322)
Description
В продуктах kernel-uek, kernel обнаружена уязвимость CVE-2014-9322.
Family
unix
Platform
Oracle Linux 5
Oracle Linux 6
Oracle Linux 7
Product
kernel
kernel-uek
Reference
packetstormsecurity: Linux-CVE-2014-9322-Proof-Of-Concept
packetstormsecurity: Linux-CVE-2014-9322-Proof-Of-Concept
Id:
Linux-CVE-2014-9322-Proof-Of-Concept
Reference:
https://packetstormsecurity.com/files/130593/Linux-CVE-2014-9322-Proof-Of-Concept.html
FSTEC: BDU:2015-09330
FSTEC: BDU:2015-09330
Id:
BDU:2015-09330
Reference:
https://bdu.fstec.ru/vul/2015-09330
FSTEC: BDU:2015-09329
FSTEC: BDU:2015-09329
Id:
BDU:2015-09329
Reference:
https://bdu.fstec.ru/vul/2015-09329
FSTEC: BDU:2015-09328
FSTEC: BDU:2015-09328
Id:
BDU:2015-09328
Reference:
https://bdu.fstec.ru/vul/2015-09328
FSTEC: BDU:2015-09327
FSTEC: BDU:2015-09327
Id:
BDU:2015-09327
Reference:
https://bdu.fstec.ru/vul/2015-09327
FSTEC: BDU:2015-09326
FSTEC: BDU:2015-09326
Id:
BDU:2015-09326
Reference:
https://bdu.fstec.ru/vul/2015-09326
FSTEC: BDU:2015-09325
FSTEC: BDU:2015-09325
Id:
BDU:2015-09325
Reference:
https://bdu.fstec.ru/vul/2015-09325
FSTEC: BDU:2015-09324
FSTEC: BDU:2015-09324
Id:
BDU:2015-09324
Reference:
https://bdu.fstec.ru/vul/2015-09324
FSTEC: BDU:2015-09323
FSTEC: BDU:2015-09323
Id:
BDU:2015-09323
Reference:
https://bdu.fstec.ru/vul/2015-09323
FSTEC: BDU:2015-09322
FSTEC: BDU:2015-09322
Id:
BDU:2015-09322
Reference:
https://bdu.fstec.ru/vul/2015-09322
FSTEC: BDU:2015-09321
FSTEC: BDU:2015-09321
Id:
BDU:2015-09321
Reference:
https://bdu.fstec.ru/vul/2015-09321
FSTEC: BDU:2015-09320
FSTEC: BDU:2015-09320
Id:
BDU:2015-09320
Reference:
https://bdu.fstec.ru/vul/2015-09320
FSTEC: BDU:2015-09319
FSTEC: BDU:2015-09319
Id:
BDU:2015-09319
Reference:
https://bdu.fstec.ru/vul/2015-09319
FSTEC: BDU:2015-09318
FSTEC: BDU:2015-09318
Id:
BDU:2015-09318
Reference:
https://bdu.fstec.ru/vul/2015-09318
FSTEC: BDU:2015-09317
FSTEC: BDU:2015-09317
Id:
BDU:2015-09317
Reference:
https://bdu.fstec.ru/vul/2015-09317
FSTEC: BDU:2015-09316
FSTEC: BDU:2015-09316
Id:
BDU:2015-09316
Reference:
https://bdu.fstec.ru/vul/2015-09316
FSTEC: BDU:2015-09315
FSTEC: BDU:2015-09315
Id:
BDU:2015-09315
Reference:
https://bdu.fstec.ru/vul/2015-09315
FSTEC: BDU:2015-09314
FSTEC: BDU:2015-09314
Id:
BDU:2015-09314
Reference:
https://bdu.fstec.ru/vul/2015-09314
FSTEC: BDU:2015-09313
FSTEC: BDU:2015-09313
Id:
BDU:2015-09313
Reference:
https://bdu.fstec.ru/vul/2015-09313
FSTEC: BDU:2015-09312
FSTEC: BDU:2015-09312
Id:
BDU:2015-09312
Reference:
https://bdu.fstec.ru/vul/2015-09312
FSTEC: BDU:2015-09311
FSTEC: BDU:2015-09311
Id:
BDU:2015-09311
Reference:
https://bdu.fstec.ru/vul/2015-09311
FSTEC: BDU:2015-09310
FSTEC: BDU:2015-09310
Id:
BDU:2015-09310
Reference:
https://bdu.fstec.ru/vul/2015-09310
FSTEC: BDU:2015-09309
FSTEC: BDU:2015-09309
Id:
BDU:2015-09309
Reference:
https://bdu.fstec.ru/vul/2015-09309
FSTEC: BDU:2015-09308
FSTEC: BDU:2015-09308
Id:
BDU:2015-09308
Reference:
https://bdu.fstec.ru/vul/2015-09308
FSTEC: BDU:2015-09307
FSTEC: BDU:2015-09307
Id:
BDU:2015-09307
Reference:
https://bdu.fstec.ru/vul/2015-09307
FSTEC: BDU:2015-09306
FSTEC: BDU:2015-09306
Id:
BDU:2015-09306
Reference:
https://bdu.fstec.ru/vul/2015-09306
FSTEC: BDU:2015-09305
FSTEC: BDU:2015-09305
Id:
BDU:2015-09305
Reference:
https://bdu.fstec.ru/vul/2015-09305
FSTEC: BDU:2015-09304
FSTEC: BDU:2015-09304
Id:
BDU:2015-09304
Reference:
https://bdu.fstec.ru/vul/2015-09304
FSTEC: BDU:2015-09303
FSTEC: BDU:2015-09303
Id:
BDU:2015-09303
Reference:
https://bdu.fstec.ru/vul/2015-09303
FSTEC: BDU:2015-09302
FSTEC: BDU:2015-09302
Id:
BDU:2015-09302
Reference:
https://bdu.fstec.ru/vul/2015-09302
FSTEC: BDU:2015-09301
FSTEC: BDU:2015-09301
Id:
BDU:2015-09301
Reference:
https://bdu.fstec.ru/vul/2015-09301
FSTEC: BDU:2015-09300
FSTEC: BDU:2015-09300
Id:
BDU:2015-09300
Reference:
https://bdu.fstec.ru/vul/2015-09300
FSTEC: BDU:2015-07289
FSTEC: BDU:2015-07289
Id:
BDU:2015-07289
Reference:
https://bdu.fstec.ru/vul/2015-07289
FSTEC: BDU:2015-07288
FSTEC: BDU:2015-07288
Id:
BDU:2015-07288
Reference:
https://bdu.fstec.ru/vul/2015-07288
FSTEC: BDU:2015-07287
FSTEC: BDU:2015-07287
Id:
BDU:2015-07287
Reference:
https://bdu.fstec.ru/vul/2015-07287
FSTEC: BDU:2015-07286
FSTEC: BDU:2015-07286
Id:
BDU:2015-07286
Reference:
https://bdu.fstec.ru/vul/2015-07286
FSTEC: BDU:2015-07285
FSTEC: BDU:2015-07285
Id:
BDU:2015-07285
Reference:
https://bdu.fstec.ru/vul/2015-07285
FSTEC: BDU:2015-07284
FSTEC: BDU:2015-07284
Id:
BDU:2015-07284
Reference:
https://bdu.fstec.ru/vul/2015-07284
FSTEC: BDU:2015-07283
FSTEC: BDU:2015-07283
Id:
BDU:2015-07283
Reference:
https://bdu.fstec.ru/vul/2015-07283
FSTEC: BDU:2015-07282
FSTEC: BDU:2015-07282
Id:
BDU:2015-07282
Reference:
https://bdu.fstec.ru/vul/2015-07282
FSTEC: BDU:2015-07281
FSTEC: BDU:2015-07281
Id:
BDU:2015-07281
Reference:
https://bdu.fstec.ru/vul/2015-07281
FSTEC: BDU:2015-07280
FSTEC: BDU:2015-07280
Id:
BDU:2015-07280
Reference:
https://bdu.fstec.ru/vul/2015-07280
FSTEC: BDU:2015-07279
FSTEC: BDU:2015-07279
Id:
BDU:2015-07279
Reference:
https://bdu.fstec.ru/vul/2015-07279
FSTEC: BDU:2015-07278
FSTEC: BDU:2015-07278
Id:
BDU:2015-07278
Reference:
https://bdu.fstec.ru/vul/2015-07278
FSTEC: BDU:2015-07017
FSTEC: BDU:2015-07017
Id:
BDU:2015-07017
Reference:
https://bdu.fstec.ru/vul/2015-07017
FSTEC: BDU:2015-07016
FSTEC: BDU:2015-07016
Id:
BDU:2015-07016
Reference:
https://bdu.fstec.ru/vul/2015-07016
FSTEC: BDU:2015-07015
FSTEC: BDU:2015-07015
Id:
BDU:2015-07015
Reference:
https://bdu.fstec.ru/vul/2015-07015
FSTEC: BDU:2015-07014
FSTEC: BDU:2015-07014
Id:
BDU:2015-07014
Reference:
https://bdu.fstec.ru/vul/2015-07014
FSTEC: BDU:2015-07013
FSTEC: BDU:2015-07013
Id:
BDU:2015-07013
Reference:
https://bdu.fstec.ru/vul/2015-07013
FSTEC: BDU:2015-07012
FSTEC: BDU:2015-07012
Id:
BDU:2015-07012
Reference:
https://bdu.fstec.ru/vul/2015-07012
FSTEC: BDU:2015-07011
FSTEC: BDU:2015-07011
Id:
BDU:2015-07011
Reference:
https://bdu.fstec.ru/vul/2015-07011
FSTEC: BDU:2015-07010
FSTEC: BDU:2015-07010
Id:
BDU:2015-07010
Reference:
https://bdu.fstec.ru/vul/2015-07010
FSTEC: BDU:2015-07009
FSTEC: BDU:2015-07009
Id:
BDU:2015-07009
Reference:
https://bdu.fstec.ru/vul/2015-07009
FSTEC: BDU:2015-07008
FSTEC: BDU:2015-07008
Id:
BDU:2015-07008
Reference:
https://bdu.fstec.ru/vul/2015-07008
FSTEC: BDU:2015-07007
FSTEC: BDU:2015-07007
Id:
BDU:2015-07007
Reference:
https://bdu.fstec.ru/vul/2015-07007
FSTEC: BDU:2015-07006
FSTEC: BDU:2015-07006
Id:
BDU:2015-07006
Reference:
https://bdu.fstec.ru/vul/2015-07006
FSTEC: BDU:2015-07005
FSTEC: BDU:2015-07005
Id:
BDU:2015-07005
Reference:
https://bdu.fstec.ru/vul/2015-07005
FSTEC: BDU:2015-07004
FSTEC: BDU:2015-07004
Id:
BDU:2015-07004
Reference:
https://bdu.fstec.ru/vul/2015-07004
FSTEC: BDU:2015-07003
FSTEC: BDU:2015-07003
Id:
BDU:2015-07003
Reference:
https://bdu.fstec.ru/vul/2015-07003
FSTEC: BDU:2015-07002
FSTEC: BDU:2015-07002
Id:
BDU:2015-07002
Reference:
https://bdu.fstec.ru/vul/2015-07002
FSTEC: BDU:2015-07001
FSTEC: BDU:2015-07001
Id:
BDU:2015-07001
Reference:
https://bdu.fstec.ru/vul/2015-07001
FSTEC: BDU:2015-07000
FSTEC: BDU:2015-07000
Id:
BDU:2015-07000
Reference:
https://bdu.fstec.ru/vul/2015-07000
FSTEC: BDU:2015-06999
FSTEC: BDU:2015-06999
Id:
BDU:2015-06999
Reference:
https://bdu.fstec.ru/vul/2015-06999
EXPLOIT-DB: 36266
EXPLOIT-DB: 36266
Id:
36266
Reference:
https://www.exploit-db.com/exploits/36266
CVE: CVE-2014-9322
CVE: CVE-2014-9322
Id:
CVE-2014-9322
Reference:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9322
Comment
: arch/x86/kernel/entry_64.S in the Linux kernel before 3.17.5 does not properly handle faults associated with the Stack Segment (SS) segment register, which allows local users to gain privileges by triggering an IRET instruction that leads to access to a GS Base address from the wrong space.
CVSSv2 Score:
7.2
Access vector:
LOCAL
Access complexity:
LOW
Authentication:
NONE
Confidentiality impact:
COMPLETE
Integrity impact:
COMPLETE
Availability impact:
COMPLETE
CVSSv2 Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C
CWE:
269 (Improper Privilege Management)
References:
[oss-security] 20141215 Linux kernel: multiple x86_64 vulnerabilities (MLIST)
https://bugzilla.redhat.com/show_bug.cgi?id=1172806 (CONFIRM)
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.17.5 (CONFIRM)
https://github.com/torvalds/linux/commit/6f442be2fb22be02cafa606f1769fa1e6f894441 (CONFIRM)
62336 (SECUNIA)
USN-2491-1 (UBUNTU)
36266 (EXPLOIT-DB)
115919 (OSVDB)
openSUSE-SU-2015:0566 (SUSE)
SUSE-SU-2015:0812 (SUSE)
SUSE-SU-2015:0736 (SUSE)
http://www.zerodayinitiative.com/advisories/ZDI-16-170 (MISC)
https://help.joyent.com/entries/98788667-Security-Advisory-ZDI-CAN-3263-ZDI-CAN-3284-and-ZDI-CAN-3364-Vulnerabilities (CONFIRM)
http://source.android.com/security/bulletin/2016-04-02.html (CONFIRM)
HPSBGN03285 (HP)
HPSBGN03282 (HP)
RHSA-2015:0009 (REDHAT)
RHSA-2014:2031 (REDHAT)
RHSA-2014:2028 (REDHAT)
RHSA-2014:2008 (REDHAT)
RHSA-2014:1998 (REDHAT)
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6f442be2fb22be02cafa606f1769fa1e6f894441 ()
VENDOR: ELSA-2014-3107
VENDOR: ELSA-2014-3107
Id:
ELSA-2014-3107
Reference:
http://linux.oracle.com/errata/ELSA-2014-3107.html
VENDOR: ELSA-2014-3106
VENDOR: ELSA-2014-3106
Id:
ELSA-2014-3106
Reference:
http://linux.oracle.com/errata/ELSA-2014-3106.html
VENDOR: ELSA-2014-3108
VENDOR: ELSA-2014-3108
Id:
ELSA-2014-3108
Reference:
http://linux.oracle.com/errata/ELSA-2014-3108.html
VENDOR: ELSA-2014-2008-1
VENDOR: ELSA-2014-2008-1
Id:
ELSA-2014-2008-1
Reference:
http://linux.oracle.com/errata/ELSA-2014-2008-1.html
VENDOR: ELSA-2014-2008
VENDOR: ELSA-2014-2008
Id:
ELSA-2014-2008
Reference:
http://linux.oracle.com/errata/ELSA-2014-2008.html
VENDOR: ELSA-2014-2010
VENDOR: ELSA-2014-2010
Id:
ELSA-2014-2010
Reference:
http://linux.oracle.com/errata/ELSA-2014-2010.html
VENDOR: ELSA-2014-1997
VENDOR: ELSA-2014-1997
Id:
ELSA-2014-1997
Reference:
http://linux.oracle.com/errata/ELSA-2014-1997.html
Content available only for registered users!
ovaldb@altx-soft.com