CVE-2014-9322

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2014-9322

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2014-9322.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2014-9322

Downstream

DEBIAN-CVE-2014-9322

RHSA-2014:1997

RHSA-2014:1998

RHSA-2014:2008

RHSA-2014:2009

RHSA-2014:2010

RHSA-2014:2028

RHSA-2014:2029

RHSA-2014:2030

RHSA-2014:2031

RHSA-2015:0009

SUSE-RU-2015:0621-1

SUSE-SU-2015:0481-1

SUSE-SU-2015:0581-1

SUSE-SU-2015:0652-1

SUSE-SU-2015:0736-1

SUSE-SU-2015:1174-1

SUSE-SU-2015:1376-1

UBUNTU-CVE-2014-9322

USN-2446-1

USN-2447-1

Related

Published

2014-12-17T11:59:02Z

Modified

2025-08-09T20:01:27Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

arch/x86/kernel/entry_64.S in the Linux kernel before 3.17.5 does not properly handle faults associated with the Stack Segment (SS) segment register, which allows local users to gain privileges by triggering an IRET instruction that leads to access to a GS Base address from the wrong space.

References

Affected packages