← Back

CVE-2014-0196

nvd nist
Published: May 7, 2014Modified: Apr 21, 2026CISA KEV

JSON object

Loading...
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Exploitability: 1.8 / Impact: 3.6
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

The n_tty_write function in drivers/tty/n_tty.c in the Linux kernel through 3.14.3 does not properly manage tty driver access in the "LECHO & !OPOST" case, which allows local users to cause a denial of service (memory corruption and system crash) or gain privileges by triggering a race condition involving read and write operations with long strings.

Affected (50)

Show all products
Linux: Linux Kernel · Debian: Debian Linux · Redhat: Enterprise Linux, Enterprise Linux Eus, Enterprise Linux Server Eus · Suse: Suse Linux Enterprise Desktop, Suse Linux Enterprise High Availability Extension, Suse Linux Enterprise Server · Oracle: Linux · Canonical: Ubuntu Linux · F5: Big Ip Access Policy Manager, Big Ip Advanced Firewall Manager, Big Ip Analytics, Big Ip Application Acceleration Manager, Big Ip Application Security Manager, Big Ip Edge Gateway, Big Ip Global Traffic Manager, Big Ip Link Controller, Big Ip Local Traffic Manager, Big Ip Policy Enforcement Manager, Big Ip Protocol Security Module, Big Ip Wan Optimization Manager, Big Ip Webaccelerator, Big Iq Application Delivery Controller, Big Iq Centralized Management, Big Iq Cloud, Big Iq Cloud And Orchestration, Big Iq Device, Big Iq Security, Enterprise Manager
Linux
1 product
Linux Kernel
Debian
1 product
Debian Linux
Redhat
3 products
Enterprise Linux
Enterprise Linux Eus
Enterprise Linux Server Eus
Suse
3 products
Suse Linux Enterprise Desktop
Suse Linux Enterprise High Availability Extension
Suse Linux Enterprise Server
Oracle
1 product
Linux
Canonical
1 product
Ubuntu Linux
F5
20 products
Big Ip Access Policy Manager
Big Ip Advanced Firewall Manager
Big Ip Analytics
Big Ip Application Acceleration Manager
Big Ip Application Security Manager
Big Ip Edge Gateway
Big Ip Global Traffic Manager
Big Ip Link Controller
Big Ip Local Traffic Manager
Big Ip Policy Enforcement Manager
Big Ip Protocol Security Module
Big Ip Wan Optimization Manager
Big Ip Webaccelerator
Big Iq Application Delivery Controller
Big Iq Centralized Management
Big Iq Cloud
Big Iq Cloud And Orchestration
Big Iq Device
Big Iq Security
Enterprise Manager
Configuration A
13 vulnerable
Vulnerable SoftwareAffected Versions
Linux
Linux Kernel
After 2.6.31 to 3.2.59
Linux Kernel
From 3.11 to 3.12.20
Linux Kernel
From 3.13 to 3.14.4
Linux Kernel
From 3.3 to 3.4.91
Linux Kernel
From 3.5 to 3.10.40
Linux Kernel
Version 2.6.31
Linux Kernel
Version 2.6.31 rc3
Linux Kernel
Version 2.6.31 rc4
Linux Kernel
Version 2.6.31 rc5
Linux Kernel
Version 2.6.31 rc6
Linux Kernel
Version 2.6.31 rc7
Linux Kernel
Version 2.6.31 rc8
Linux Kernel
Version 2.6.31 rc9
Configuration B
2 vulnerable
Vulnerable SoftwareAffected Versions
Debian
Debian Linux
Version 6.0
Debian Linux
Version 7.0
Configuration C
4 vulnerable
Vulnerable SoftwareAffected Versions
Enterprise Linux
Version 6.0
Redhat
Enterprise Linux Eus
Version 6.3
Enterprise Linux Eus
Version 6.4
Enterprise Linux Server Eus
Version 6.3
Configuration D
4 vulnerable
Vulnerable SoftwareAffected Versions
Suse Linux Enterprise Desktop
Version 11 sp3
Suse Linux Enterprise High Availability Extension
Version 11 sp3
Suse
Suse Linux Enterprise Server
Version 11 sp3
Suse Linux Enterprise Server
Version 11 sp3
Configuration E
1 vulnerable
Vulnerable SoftwareAffected Versions
Linux
Version 6
Configuration F
5 vulnerable
Vulnerable SoftwareAffected Versions
Canonical
Ubuntu Linux
Version 10.04
Ubuntu Linux
Version 12.04
Ubuntu Linux
Version 12.10
Ubuntu Linux
Version 13.10
Ubuntu Linux
Version 14.04
Configuration G
21 vulnerable
Vulnerable SoftwareAffected Versions
Big Ip Access Policy Manager
From 11.1.0 to 11.5.1
Big Ip Advanced Firewall Manager
From 11.3.0 to 11.5.1
Big Ip Analytics
From 11.1.0 to 11.5.1
Big Ip Application Acceleration Manager
From 11.4.0 to 11.5.1
Big Ip Application Security Manager
From 11.1.0 to 11.5.1
Big Ip Edge Gateway
From 11.1.0 to 11.3.0
Big Ip Global Traffic Manager
From 11.1.0 to 11.5.1
Big Ip Link Controller
From 11.1.0 to 11.5.1
Big Ip Local Traffic Manager
From 11.1.0 to 11.5.1
Big Ip Policy Enforcement Manager
From 11.3.0 to 11.5.1
Big Ip Protocol Security Module
From 11.1.0 to 11.4.1
Big Ip Wan Optimization Manager
From 11.1.0 to 11.3.0
Big Ip Webaccelerator
From 11.1.0 to 11.3.0
Big Iq Application Delivery Controller
Version 4.5.0
Big Iq Centralized Management
Version 4.6.0
Big Iq Cloud
From 4.0.0 to 4.5.0
Big Iq Cloud And Orchestration
Version 1.0.0
Big Iq Device
From 4.2.0 to 4.5.0
Big Iq Security
From 4.0.0 to 4.5.0
F5
Enterprise Manager
Version 3.1.0
Enterprise Manager
Version 3.1.1

Related CWEs

CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
The product contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

References (57)

Source: secalert@redhat.com
Issue TrackingPermissions RequiredThird Party Advisory
Source: secalert@redhat.com
Broken Link
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Mailing ListThird Party Advisory
Source: secalert@redhat.com
Mailing ListThird Party Advisory
Source: secalert@redhat.com
ExploitMailing ListThird Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Not Applicable
Source: secalert@redhat.com
Broken Link
Source: secalert@redhat.com
Broken Link
Source: secalert@redhat.com
Not Applicable
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
ExploitThird Party AdvisoryVDB Entry
Source: secalert@redhat.com
Mailing ListThird Party Advisory
Source: secalert@redhat.com
Broken Link
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Issue TrackingPatchThird Party Advisory
Source: secalert@redhat.com
ExploitPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Issue TrackingPermissions RequiredThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitMailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Not Applicable
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Not Applicable
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Issue TrackingPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitPatchThird Party Advisory
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
US Government Resource

Timeline

No history available yet.