CVE-2014-8086

Race condition in the ext4_file_write_iter function in fs/ext4/file.c in the Linux kernel through 3.17 allows local users to cause a denial of service (file unavailability) via a combination of a write action and an F_SETFL fcntl operation for the O_DIRECT flag.
References
Link Resource
https://lkml.org/lkml/2014/10/9/129 Exploit Mailing List Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1151353 Issue Tracking Patch Third Party Advisory
http://www.spinics.net/lists/linux-ext4/msg45685.html Mailing List Patch Third Party Advisory
https://lkml.org/lkml/2014/10/8/545 Exploit Mailing List Third Party Advisory
http://www.spinics.net/lists/linux-ext4/msg45683.html Exploit Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2014/10/09/25 Mailing List Third Party Advisory
http://www.securityfocus.com/bid/70376 Third Party Advisory VDB Entry
http://rhn.redhat.com/errata/RHSA-2015-0290.html Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-0694.html Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00004.html Mailing List Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/96922 Third Party Advisory VDB Entry
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp2:*:*:ltss:*:*:*

Information

Published : 2014-10-13 03:55

Updated : 2020-08-14 11:16


NVD link : CVE-2014-8086

Mitre link : CVE-2014-8086


JSON object : View

CWE
CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Advertisement

dedicated server usa

Products Affected

suse

  • suse_linux_enterprise_server

linux

  • linux_kernel