VDB
CVE-2014-1690
CVE-2014-1690
REJECTED
The help function in net/netfilter/nf_nat_irc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in which incorrect packet data is transmitted during use of the NAT mangle feature.
EPSS 0.80% · 74.4th percentile
Risk Scores
EPSS Score
0.80%
74.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | linux-hwe | 0 |
| Ubuntu:14.04:LTS | linux-aws | 0 |
| Ubuntu:14.04:LTS | linux-lts-wily | 0 |
| Ubuntu:16.04:LTS | linux-aws | 0 |
| Ubuntu:16.04:LTS | linux | 0 |
| Ubuntu:16.04:LTS | linux-raspi2 | 0 |
| Ubuntu:14.04:LTS | linux-lts-xenial | 0 |
| Ubuntu:16.04:LTS | linux-snapdragon | 0 |
| Ubuntu:16.04:LTS | linux-gke | 0 |
| Ubuntu:14.04:LTS | linux | 3.12.0-5.13, 3.13.0-2.17, 3.12.0-7.15 |
| Ubuntu:14.04:LTS | linux-lts-vivid | 0 |
| Ubuntu:14.04:LTS | linux-lts-utopic | 0 |
Timeline
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 17, 2022 EPSS Score
- Feb 3, 2023 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 1, 2023 EPSS Score
- May 24, 2023 EPSS Score
- Jul 15, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2014-1690 third-party-advisory
- https://git.kernel.org/linus/2690d97ade05c5325cbf7c72b94b90d265659886 third-party-advisory
- http://www.openwall.com/lists/oss-security/2014/01/28 third-party-advisory
- https://ubuntu.com/security/notices/USN-2137-1 vendor-advisory
- https://ubuntu.com/security/notices/USN-2140-1 vendor-advisory
- https://ubuntu.com/security/notices/USN-2158-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2014-1690 third-party-advisory