15 Mar 2015
Vulnerability Details : CVE-2014-8159
The InfiniBand (IB) implementation in the Linux kernel package before 2.6.32-504.12.2 on Red Hat Enterprise Linux (RHEL) 6 does not properly restrict use of User Verbs for registration of memory regions, which allows local users to access arbitrary physical memory locations, and consequently cause a denial of service (system crash) or gain privileges, by leveraging permissions on a uverbs device under /dev/infiniband/.
Publish Date : 2015-03-16 Last Update Date : 2015-03-25
- CVSS Scores & Vulnerability Types
- Related OVAL Definitions
OVAL (Open Vulnerability and Assessment Language) definitions define exactly what should be done to verify a vulnerability or a missing patch. Check out the OVAL definitions if you want to learn what you should do to verify a vulnerability.
- Products Affected By CVE-2014-8159
- Number Of Affected Versions By Product
- References For CVE-2014-8159
- Metasploit Modules Related To CVE-2014-8159
There are not any metasploit modules related to this vulnerability (Please visit www.metasploit.com for more information)