#VU41279 Buffer overflow in Linux kernel - CVE-2014-3182

Cybersecurity Help s.r.o.

Published: 2014-09-28 | Updated: 2020-08-10

Vulnerability identifier: #VU41279

Vulnerability risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2014-3182

CWE-ID: CWE-119

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Array index error in the logi_dj_raw_event function in drivers/hid/hid-logitech-dj.c in the Linux kernel before 3.16.2 allows physically proximate attackers to execute arbitrary code or cause a denial of service (invalid kfree) via a crafted device that provides a malformed REPORT_TYPE_NOTIF_DEVICE_UNPAIRED value.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Linux kernel: 3.16.0

External links
https://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ad3e14d7c5268c2e24477c6ef54bbdf88add5d36
https://rhn.redhat.com/errata/RHSA-2014-1318.html
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.16.2
https://www.openwall.com/lists/oss-security/2014/09/11/21
https://www.securityfocus.com/bid/69770
https://bugzilla.redhat.com/show_bug.cgi?id=1141210
https://code.google.com/p/google-security-research/issues/detail?id=89
https://github.com/torvalds/linux/commit/ad3e14d7c5268c2e24477c6ef54bbdf88add5d36

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Buffer overflow in Linux kernel