Vulnerability Description
The vdso_addr function in arch/x86/vdso/vma.c in the Linux kernel through 3.18.2 does not properly choose memory locations for the vDSO area, which makes it easier for local users to bypass the ASLR protection mechanism by guessing a location at the end of a PMD.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | <= 3.18.2 |
| Redhat | Enterprise Linux Aus | 6.6 |
| Redhat | Enterprise Linux Desktop | 6.0 |
| Redhat | Enterprise Linux Eus | 6.6 |
| Redhat | Enterprise Linux Server | 6.0 |
| Redhat | Enterprise Linux Server Aus | 7.3 |
| Redhat | Enterprise Linux Server Eus | 7.1 |
| Redhat | Enterprise Linux Server Tus | 6.6 |
| Redhat | Enterprise Linux Workstation | 6.0 |
| Opensuse | Evergreen | 11.4 |
| Opensuse | Opensuse | 13.1 |
| Suse | Linux Enterprise Desktop | 12 |
| Suse | Linux Enterprise Real Time Extension | 11 |
| Suse | Linux Enterprise Server | 11 |
| Suse | Linux Enterprise Software Development Kit | 12 |
| Suse | Linux Enterprise Workstation Extension | 12 |
| Fedoraproject | Fedora | 21 |
| Debian | Debian Linux | 7.0 |
| Canonical | Ubuntu Linux | 12.04 |
References
- http://git.kernel.org/?p=linux/kernel/git/luto/linux.git%3Ba=commit%3Bh=bc3b94c3
- http://git.kernel.org/?p=linux/kernel/git/tip/tip.git%3Ba=commit%3Bh=fbe1bf14067
- http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148480.htMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00035.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00010.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00025.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00000.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00009.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00015.htmlMailing ListThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2015-1081.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2015-1778.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2015-1787.htmlThird Party Advisory
- http://v0ids3curity.blogspot.in/2014/12/return-to-vdso-using-elf-auxiliary.htmlBroken Link
- http://www.debian.org/security/2015/dsa-3170Third Party Advisory
- http://www.mandriva.com/security/advisories?name=MDVSA-2015:058Third Party Advisory
FAQ
What is CVE-2014-9585?
CVE-2014-9585 is a vulnerability with a CVSS score of 2.1 (LOW). The vdso_addr function in arch/x86/vdso/vma.c in the Linux kernel through 3.18.2 does not properly choose memory locations for the vDSO area, which makes it easier for local users to bypass the ASLR p...
How severe is CVE-2014-9585?
CVE-2014-9585 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-9585?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Redhat Enterprise Linux Aus, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Eus, Redhat Enterprise Linux Server.