CISA/NIST NVD Alert - CVE-2014-3153

Kernel - Linux Kernel Privilege Escalation Vulnerability

CISA/NIST Known Exploited Vulnerability Alert

CVE Identification Number

CVE-2014-3153

Vendor Name

Linux

Product

Kernel

Vulnerability Name

Linux Kernel Privilege Escalation Vulnerability

Description of Vulnerability

The futex_requeue function in kernel/futex.c in Linux kernel does not ensure that calls have two different futex addresses, which allows local users to gain privileges.

Date Added to CISA Known Exploited Vulnerability Database

2022-05-25

Remediation

Apply updates per vendor instructions.

Link to NIST NVD CVE Listing

National Vulnerability Database Source