Launchpad.net

CVE 2014-2568

Use-after-free vulnerability in the nfqnl_zcopy function in net/netfilter/nfnetlink_queue_core.c in the Linux kernel through 3.13.6 allows attackers to obtain sensitive information from kernel memory by leveraging the absence of a certain orphaning operation. NOTE: the affected code was moved to the skb_zerocopy function in net/core/skbuff.c before the vulnerability was announced.

Related bugs and status

CVE-2014-2568 (Candidate) is related to these bugs:

Bug #1297743: CVE-2014-2568

		In	Importance	Status
1297743	CVE-2014-2568	linux (Ubuntu)	Medium	Invalid
1297743	CVE-2014-2568	linux-fsl-imx51 (Ubuntu)	Medium	Invalid
1297743	CVE-2014-2568	linux-mvl-dove (Ubuntu)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-backport-maverick (Ubuntu)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-lts-backport-natty (Ubuntu)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-ti-omap4 (Ubuntu)	Medium	Invalid
1297743	CVE-2014-2568	linux-ec2 (Ubuntu)	Medium	Invalid
1297743	CVE-2014-2568	linux (Ubuntu Trusty)	Medium	Fix Released
1297743	CVE-2014-2568	linux-ec2 (Ubuntu Trusty)	Medium	Invalid
1297743	CVE-2014-2568	linux-fsl-imx51 (Ubuntu Trusty)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-backport-maverick (Ubuntu Trusty)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-lts-backport-natty (Ubuntu Trusty)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-mvl-dove (Ubuntu Trusty)	Medium	Invalid
1297743	CVE-2014-2568	linux-ti-omap4 (Ubuntu Trusty)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-backport-maverick (Ubuntu Saucy)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-lts-backport-natty (Ubuntu Saucy)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-lts-backport-maverick (Ubuntu Quantal)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-lts-backport-natty (Ubuntu Quantal)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux (Ubuntu Precise)	Medium	Invalid
1297743	CVE-2014-2568	linux-ec2 (Ubuntu Precise)	Medium	Invalid
1297743	CVE-2014-2568	linux-fsl-imx51 (Ubuntu Precise)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-backport-maverick (Ubuntu Precise)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-lts-backport-natty (Ubuntu Precise)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-mvl-dove (Ubuntu Precise)	Medium	Invalid
1297743	CVE-2014-2568	linux-ti-omap4 (Ubuntu Precise)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-backport-maverick (Ubuntu Lucid)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-lts-backport-natty (Ubuntu Lucid)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-armadaxp (Ubuntu)	Medium	Invalid
1297743	CVE-2014-2568	linux-armadaxp (Ubuntu Precise)	Medium	Invalid
1297743	CVE-2014-2568	linux-armadaxp (Ubuntu Trusty)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-saucy (Ubuntu)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-saucy (Ubuntu Precise)	Medium	Fix Released
1297743	CVE-2014-2568	linux-lts-saucy (Ubuntu Trusty)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-quantal (Ubuntu)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-quantal (Ubuntu Precise)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-quantal (Ubuntu Trusty)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-raring (Ubuntu)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-raring (Ubuntu Precise)	Medium	Won't Fix
1297743	CVE-2014-2568	linux-lts-raring (Ubuntu Trusty)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-backport-maverick (Ubuntu Utopic)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-lts-backport-natty (Ubuntu Utopic)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-lts-trusty (Ubuntu Precise)	Medium	Fix Released
1297743	CVE-2014-2568	linux (Ubuntu Vivid)	Medium	Invalid
1297743	CVE-2014-2568	linux-armadaxp (Ubuntu Vivid)	Medium	Invalid
1297743	CVE-2014-2568	linux-ec2 (Ubuntu Vivid)	Medium	Invalid
1297743	CVE-2014-2568	linux-fsl-imx51 (Ubuntu Vivid)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-backport-maverick (Ubuntu Vivid)	Undecided	New
1297743	CVE-2014-2568	linux-lts-backport-natty (Ubuntu Vivid)	Undecided	New
1297743	CVE-2014-2568	linux-lts-quantal (Ubuntu Vivid)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-raring (Ubuntu Vivid)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-saucy (Ubuntu Vivid)	Medium	Invalid
1297743	CVE-2014-2568	linux-mvl-dove (Ubuntu Vivid)	Medium	Invalid
1297743	CVE-2014-2568	linux-ti-omap4 (Ubuntu Vivid)	Medium	Invalid
1297743	CVE-2014-2568	linux (Ubuntu Wily)	Medium	Invalid
1297743	CVE-2014-2568	linux-armadaxp (Ubuntu Wily)	Medium	Invalid
1297743	CVE-2014-2568	linux-ec2 (Ubuntu Wily)	Medium	Invalid
1297743	CVE-2014-2568	linux-fsl-imx51 (Ubuntu Wily)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-backport-maverick (Ubuntu Wily)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-lts-backport-natty (Ubuntu Wily)	Undecided	Won't Fix
1297743	CVE-2014-2568	linux-lts-quantal (Ubuntu Wily)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-raring (Ubuntu Wily)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-saucy (Ubuntu Wily)	Medium	Invalid
1297743	CVE-2014-2568	linux-mvl-dove (Ubuntu Wily)	Medium	Invalid
1297743	CVE-2014-2568	linux-ti-omap4 (Ubuntu Wily)	Medium	Invalid
1297743	CVE-2014-2568	linux-goldfish (Ubuntu)	Medium	Invalid
1297743	CVE-2014-2568	linux-goldfish (Ubuntu Precise)	Medium	Invalid
1297743	CVE-2014-2568	linux-goldfish (Ubuntu Vivid)	Medium	Invalid
1297743	CVE-2014-2568	linux-goldfish (Ubuntu Wily)	Medium	Invalid
1297743	CVE-2014-2568	linux-flo (Ubuntu)	Medium	Invalid
1297743	CVE-2014-2568	linux-flo (Ubuntu Precise)	Medium	Invalid
1297743	CVE-2014-2568	linux-flo (Ubuntu Vivid)	Medium	Invalid
1297743	CVE-2014-2568	linux-flo (Ubuntu Wily)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-vivid (Ubuntu)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-vivid (Ubuntu Precise)	Medium	Invalid
1297743	CVE-2014-2568	linux-lts-vivid (Ubuntu Vivid)	Medium	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2014-2568

Related bugs and status

Related bugs

References