Home

CVE-2014-1690

Description

The help function in net/netfilter/nf_nat_irc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in which incorrect packet data is transmitted during use of the NAT mangle feature.

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.8

Associated Vulnerability

VulnerabilityOS Platform
Linux hardware enablement kernel from Saucy (USN-2137-1) linux-image-3.11.0-18-generic_3.11.0-18.32~precise1_i386.debLinux
Linux hardware enablement kernel from Saucy (USN-2137-1) linux-image-3.11.0-18-generic_3.11.0-18.32~precise1_amd64.debLinux
Linux hardware enablement kernel from Raring (USN-2158-1) linux-image-3.8.0-38-generic_3.8.0-38.56~precise1_i386.debLinux
Linux hardware enablement kernel from Raring (USN-2158-1) linux-image-3.8.0-38-generic_3.8.0-38.56~precise1_amd64.debLinux
Dtrace-modules-3.8.13-44.el6uek update (ELSA-2014-3070) dtrace-modules-3.8.13-44.el6uek-0.4.3-4.el6.x86_64.rpmLinux
Dtrace-modules-3.8.13-44.el7uek update (ELSA-2014-3070) dtrace-modules-3.8.13-44.el7uek-0.4.3-4.el7.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234