CVE-2014-3153

HIGH CISA KEV EPSS 98.3%
Published Jun 7, 201412y ago · Modified Jun 17, 20262w ago
7.8 CVSS 3.1
High
Find Similar
Published Jun 7, 2014 12y ago
Last Modified Jun 17, 2026 2w ago
KEV Listed May 25, 2022 4y ago
KEV Due Jun 15, 2022 1481d overdue

Description

The futex_requeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEX_REQUEUE command that facilitates unsafe waiter modification.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

CISA Known Exploited Overdue 1481d
Added
May 25, 2022
Due
Jun 15, 2022

Apply updates per vendor instructions.

EPSS Exploit Probability
98.3% percentile
Exploit & Patch Status
Actively Exploited (KEV)
Patch Available

Affected Products 18

VendorProductVersionRange
linuxlinux_kernel* <3.2.60
linuxlinux_kernel*≥3.3  –  <3.4.92
linuxlinux_kernel*≥3.5  –  <3.10.42
linuxlinux_kernel*≥3.11  –  <3.12.22
linuxlinux_kernel*≥3.13  –  <3.14.6
redhatenterprise_linux_server_aus6.2any
opensuseopensuse11.4any
suselinux_enterprise_desktop11any
suselinux_enterprise_high_availability_extension11any
suselinux_enterprise_real_time_extension11any
suselinux_enterprise_server11any
suselinux_enterprise_server11any
suselinux_enterprise_server11any
suselinux_enterprise_server11any
canonicalubuntu_linux12.04any
canonicalubuntu_linux14.04any
oraclelinux5any
oraclelinux6any

References 40

  • git.kernel.org http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e9c243a5a6de0be8e584c604d353412584b592f8
    Broken Link
  • linux.oracle.com http://linux.oracle.com/errata/ELSA-2014-0771.html
    Third Party Advisory
  • linux.oracle.com http://linux.oracle.com/errata/ELSA-2014-3037.html
    Third Party Advisory
  • linux.oracle.com http://linux.oracle.com/errata/ELSA-2014-3038.html
    Third Party Advisory
  • linux.oracle.com http://linux.oracle.com/errata/ELSA-2014-3039.html
    Third Party Advisory
  • lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00014.html
    Mailing ListThird Party Advisory
  • lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00018.html
    Mailing ListThird Party Advisory
  • lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00025.html
    Mailing ListThird Party Advisory
  • lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2014-07/msg00006.html
    Mailing ListThird Party Advisory
  • lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.html
    Mailing ListThird Party Advisory
  • lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.html
    Mailing ListThird Party Advisory
  • openwall.com http://openwall.com/lists/oss-security/2014/06/05/24
    Mailing List
  • openwall.com http://openwall.com/lists/oss-security/2014/06/06/20
    Mailing List
  • rhn.redhat.com http://rhn.redhat.com/errata/RHSA-2014-0800.html
    Third Party Advisory
  • secunia.com http://secunia.com/advisories/58500
    Broken Link
  • secunia.com http://secunia.com/advisories/58990
    Broken Link
  • secunia.com http://secunia.com/advisories/59029
    Broken Link
  • secunia.com http://secunia.com/advisories/59092
    Broken Link
  • secunia.com http://secunia.com/advisories/59153
    Broken Link
  • secunia.com http://secunia.com/advisories/59262
    Broken Link
  • secunia.com http://secunia.com/advisories/59309
    Broken Link
  • secunia.com http://secunia.com/advisories/59386
    Broken Link
  • secunia.com http://secunia.com/advisories/59599
    Broken Link
  • debian.org http://www.debian.org/security/2014/dsa-2949
    Exploit
  • exploit-db.com http://www.exploit-db.com/exploits/35370
    Third Party AdvisoryVDB Entry
  • openwall.com http://www.openwall.com/lists/oss-security/2014/06/05/22
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2021/02/01/4
    Mailing List
  • securityfocus.com http://www.securityfocus.com/bid/67906
    Broken LinkThird Party AdvisoryVDB Entry
  • securitytracker.com http://www.securitytracker.com/id/1030451
    Broken LinkThird Party AdvisoryVDB Entry
  • ubuntu.com http://www.ubuntu.com/usn/USN-2237-1
    Third Party Advisory
  • ubuntu.com http://www.ubuntu.com/usn/USN-2240-1
    Third Party Advisory
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1103626
    Issue TrackingThird Party Advisory
  • elongl.github.io https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html
    Exploit
  • git.kernel.org https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=13fbca4c6ecd96ec1a1cfa2e4f2ce191fe928a5e
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=54a217887a7b658e2650c3feff22756ab80c7339
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b3eaa9fc5cd0a4d74b18f6b8dc617aeaf1873270
    Mailing ListPatch
  • github.com https://github.com/elongl/CVE-2014-3153
    Third Party Advisory
  • github.com https://github.com/torvalds/linux/commit/e9c243a5a6de0be8e584c604d353412584b592f8
    Patch
  • cisa.gov https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2014-3153
    US Government Resource
  • openwall.com https://www.openwall.com/lists/oss-security/2021/02/01/4
    Mailing List

Remediation

  • git.kernel.org https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=13fbca4c6ecd96ec1a1cfa2e4f2ce191fe928a5e
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=54a217887a7b658e2650c3feff22756ab80c7339
    Mailing ListPatch
  • git.kernel.org https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b3eaa9fc5cd0a4d74b18f6b8dc617aeaf1873270
    Mailing ListPatch
  • github.com https://github.com/torvalds/linux/commit/e9c243a5a6de0be8e584c604d353412584b592f8
    Patch