CVE-2014-1453

Related Files

Debian Security Advisory 2952-1

Posted Jun 6, 2014

Authored by Debian | Site debian.org

Debian Linux Security Advisory 2952-1 - Several vulnerabilities have been discovered in the FreeBSD kernel that may lead to a denial of service or possibly disclosure of kernel memory.

tags | advisory, denial of service, kernel, vulnerability

systems | linux, freebsd, debian

advisories | CVE-2014-1453, CVE-2014-3000, CVE-2014-3880

SHA-256 | ed9ae58961ec6726a952124bc8bfc4359b78791bff785b07a58275d25c075aa7

Download | Favorite | View

FreeBSD Security Advisory - NFS Server Deadlock

Posted Apr 9, 2014

Authored by Rick Macklem | Site security.freebsd.org

FreeBSD Security Advisory - The Network File System (NFS) allows a host to export some or all of its file systems so that other hosts can access them over the network and mount them as if they were on local disks. FreeBSD includes both server and client implementations of NFS. The kernel holds a lock over the source directory vnode while trying to convert the target directory file handle to a vnode, which needs to be returned with the lock held, too. This order may be in violation of normal lock order, which in conjunction with other threads that grab locks in the right order, constitutes a deadlock condition because no thread can proceed. An attacker on a trusted client could cause the NFS server become deadlocked, resulting in a denial of service.

tags | advisory, denial of service, kernel, local

systems | freebsd

advisories | CVE-2014-1453

SHA-256 | 06a17d6d6d665cb7448fdfe9475b3cd86f41e2dbd4f78d7d2cd978834c281738

Download | Favorite | View