canonical ubuntu-linux CVE-2014-9585 vulnerability in Canonical and Other Products
Published on January 9, 2015

product logo product logo product logo product logo product logo product logo product logo
The vdso_addr function in arch/x86/vdso/vma.c in the Linux kernel through 3.18.2 does not properly choose memory locations for the vDSO area, which makes it easier for local users to bypass the ASLR protection mechanism by guessing a location at the end of a PMD.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD


Products Associated with CVE-2014-9585

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2014-9585 are published in these products:

Canonical Ubuntu Linux
 
Debian Linux
 
Fedora Project Fedora
 
Linux Kernel
 
OpenSuse Evergreen
 
OpenSuse
 
Red Hat Enterprise Linux Aus
 
Red Hat Enterprise Linux Desktop
 
Red Hat Enterprise Linux Eus
 
Red Hat Enterprise Linux Server
 
Red Hat Enterprise Linux Server Aus
 
Red Hat Enterprise Linux Server Eus
 
Red Hat Enterprise Linux Server Tus
 
Red Hat Enterprise Linux Workstation
 
Suse Linux Enterprise Desktop
 
Suse Linux Enterprise Real Time Extension
 
Suse Linux Enterprise Server
 
Suse Linux Enterprise Software Development Kit
 
Suse Linux Enterprise Workstation Extension
 

Exploit Probability

EPSS
0.05%
Percentile
13.74%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.