DEBIAN-CVE-2014-0038

DEBIAN-CVE-2014-0038 PUBLISHED

The compat_sys_recvmmsg function in net/compat.c in the Linux kernel before 3.13.2, when CONFIG_X86_X32 is enabled, allows local users to gain privileges via a recvmmsg system call with a crafted timeout pointer parameter.

Affected Products

Vendor	Product	Versions
Debian:14	linux	0, 0, 0
Debian:13	linux	0, 0, 0
Debian:12	linux	0, 0, 0
Debian:11	linux	0, 0, 0

Exploit Intelligence

SNP Assignment 1 Report - Linux box exploitation ( Vulnerability CVE-2014-0038) (github-poc)
Linux local root exploit for CVE-2014-0038 (github-poc)

Timeline

Feb 6, 2014 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2014-0038 advisory

Open in Interactive Console →