VDB

CVE-2014-0100

CVE-2014-0100 REJECTED

Race condition in the inet_frag_intern function in net/ipv4/inet_fragment.c in the Linux kernel through 3.13.6 allows remote attackers to cause a denial of service (use-after-free error) or possibly have unspecified other impact via a large series of fragmented ICMP Echo Request packets to a system with a heavy CPU load.

EPSS 0.50% · 66.2th percentile

Risk Scores

EPSS Score
0.50%
66.2th percentile

Affected Products

VendorProductVersions
Ubuntu:16.04:LTSlinux-raspi20
Ubuntu:16.04:LTSlinux0
Ubuntu:14.04:LTSlinux3.12.0-2.7, 3.12.0-3.8, 3.12.0-3.9
Ubuntu:16.04:LTSlinux-snapdragon0
Ubuntu:14.04:LTSlinux-lts-wily0
Ubuntu:14.04:LTSlinux-lts-xenial0
Ubuntu:16.04:LTSlinux-aws0
Ubuntu:14.04:LTSlinux-lts-vivid0
Ubuntu:16.04:LTSlinux-gke0
Ubuntu:14.04:LTSlinux-aws0
Ubuntu:14.04:LTSlinux-lts-utopic0
Ubuntu:16.04:LTSlinux-hwe0

Timeline

  • Feb 4, 2022 EPSS Score
  • Mar 29, 2022 EPSS Score
  • May 20, 2022 EPSS Score
  • Jul 12, 2022 EPSS Score
  • Sep 3, 2022 EPSS Score
  • Dec 18, 2022 EPSS Score
  • Feb 8, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 2, 2023 EPSS Score
  • May 25, 2023 EPSS Score
  • Jul 16, 2023 EPSS Score
  • Sep 7, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›