VDB

CVE-2014-3180

CVE-2014-3180 PUBLISHED

In kernel/compat.c in the Linux kernel before 3.17, as used in Google Chrome OS and other products, there is a possible out-of-bounds read. restart_syscall uses uninitialized data when restarting compat_sys_nanosleep. NOTE: this is disputed because the code path is unreachable

EPSS 0.18% · 38.8th percentile

Risk Scores

EPSS Score
0.18%
38.8th percentile

Affected Products

VendorProductVersions
Ubuntu:20.04:LTSlinux-gkeop-5.155.15.0-1025.30~20.04.1, *, *
Ubuntu:24.04:LTSlinux-raspi-realtime0, 6.8.0-2019.20
Ubuntu:22.04:LTSlinux-riscv5.13.0-1007.7+22.04.1, 5.13.0-1010.11+22.04.1, 5.15.0-1004.4
Ubuntu:18.04:LTSlinux-gcp-edge4.18.0-1005.6~18.04.1, 4.18.0-1007.8~18.04.1, 4.18.0-1008.9~18.04.1
Ubuntu:18.04:LTSlinux-azure-edge5.0.0-1012.12~18.04.2, 4.18.0-1008.8~18.04.1, 4.18.0-1007.7~18.04.1
Ubuntu:20.04:LTSlinux-riscv5.4.0-36.41, 0, 5.4.0-24.28
Ubuntu:20.04:LTSlinux-gke5.4.0-1067.70, 5.4.0-1083.89, 5.4.0-1105.112
Ubuntu:20.04:LTSlinux-gkeop5.4.0-1026.27, 5.4.0-1025.26, 5.4.0-1024.25
Ubuntu:22.04:LTSlinux-intel-iot-realtime5.15.0-1073.75, 0
Ubuntu:20.04:LTSlinux-azure-fde5.4.0-1090.95+cvm1.1, 5.4.0-1095.101+cvm1.1, 5.4.0-1092.97+cvm1.1
Ubuntu:22.04:LTSlinux-realtime5.15.0-1032.35, 0

Exploit Intelligence

Timeline

  • Nov 6, 2019 CVE Published
  • Feb 4, 2022 EPSS Score
  • Mar 29, 2022 EPSS Score
  • May 20, 2022 EPSS Score
  • Jul 12, 2022 EPSS Score
  • Sep 3, 2022 EPSS Score
  • Oct 26, 2022 EPSS Score
  • Dec 18, 2022 EPSS Score
  • Feb 8, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 2, 2023 EPSS Score
  • May 25, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›