Vulnerability Name: | CVE-2014-2038 (CCN-91307) | ||||||||||||||||||||||||||||||||
Assigned: | 2014-01-17 | ||||||||||||||||||||||||||||||||
Published: | 2014-01-17 | ||||||||||||||||||||||||||||||||
Updated: | 2020-08-26 | ||||||||||||||||||||||||||||||||
Summary: | The nfs_can_extend_write function in fs/nfs/write.c in the Linux kernel before 3.13.3 relies on a write delegation to extend a write operation without a certain up-to-date verification, which allows local users to obtain sensitive information from kernel memory in opportunistic circumstances by writing to a file in an NFS filesystem and then reading the same file. | ||||||||||||||||||||||||||||||||
CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
| ||||||||||||||||||||||||||||||||
CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N) 1.6 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
1.6 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
2.4 Low (REDHAT Temporal CVSS v2 Vector: AV:A/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
| ||||||||||||||||||||||||||||||||
Vulnerability Type: | CWE-200 | ||||||||||||||||||||||||||||||||
Vulnerability Consequences: | Obtain Information | ||||||||||||||||||||||||||||||||
References: | Source: MITRE Type: CNA CVE-2014-2038 Source: CONFIRM Type: Patch, Vendor Advisory http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=263b4509ec4d47e0da3e753f85a39ea12d1eff24 Source: CCN Type: oss-security: Thu, 20 Feb 2014 CVE request: Linux kernel: nfs: information leakage Source: CONFIRM Type: Release Notes, Vendor Advisory http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.13.3 Source: MLIST Type: Mailing List, Third Party Advisory [oss-security] 20140221 Re: Re: CVE request: Linux kernel: nfs: information leakage Source: CCN Type: BID-65688 Linux Kernel NFS File System 'fs/nfs/write.c' Information Disclosure Vulnerability Source: UBUNTU Type: Third Party Advisory USN-2137-1 Source: UBUNTU Type: Third Party Advisory USN-2140-1 Source: CCN Type: Red Hat Bugzilla Bug 1066939 (CVE-2014-2038) CVE-2014-2038 kernel: nfs: data leak during extended writes Source: CONFIRM Type: Issue Tracking, Patch, Third Party Advisory https://bugzilla.redhat.com/show_bug.cgi?id=1066939 Source: XF Type: UNKNOWN linux-kernel-cve20142038-info-disc(91307) Source: CCN Type: Linux Kernel GIT Repository nfs: always make sure page is up-to-date before extending a write to cover the entire page Source: CONFIRM Type: Patch, Third Party Advisory https://github.com/torvalds/linux/commit/263b4509ec4d47e0da3e753f85a39ea12d1eff24 | ||||||||||||||||||||||||||||||||
Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration RedHat 1: Configuration RedHat 2: Configuration RedHat 3: Configuration RedHat 4: Configuration RedHat 5: Configuration CCN 1: Denotes that component is vulnerable | ||||||||||||||||||||||||||||||||
Oval Definitions | |||||||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||||||
BACK |