Updated kernel-tmb packages fix CVE-2014-0038
Publication date: 10 Feb 2014Modification date: 10 Feb 2014
Type: security
Affected Mageia releases : 4
CVE: CVE-2014-0038
Description
This kernel update provides an update to 3.12.9 and fixes the following critical security issue: Pageexec reported a bug in the Linux kernel's recvmmsg syscall when called from code using the x32 ABI. An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or gain administrator privileges (CVE-2014-0038) For other changes, see the referenced changelog:
References
SRPMS
4/core
- kernel-tmb-3.12.9-1.mga4