Security Advisory

CVE-2014-7825

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-11-10 11:00:00

Last updated 2024-08-06 13:03:27

Assigner redhat

State PUBLISHED

Description

kernel/trace/trace_syscalls.c in the Linux kernel through 3.17.2 does not properly handle private syscall numbers during use of the perf subsystem, which allows local users to cause a denial of service (out-of-bounds read and OOPS) or bypass the ASLR protection mechanism via a crafted application.

← Browse all CVEs View on cve.org ↗