CVE-2014-7207

{"id": "CVE-2014-7207", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.9, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-11-10T11:55:08.080", "references": [{"url": "http://www.debian.org/security/2014/dsa-3060", "source": "security@debian.org"}, {"url": "http://www.openwall.com/lists/oss-security/2014/11/02/1", "source": "security@debian.org"}, {"url": "http://www.securityfocus.com/bid/70867", "source": "security@debian.org"}, {"url": "http://www.ubuntu.com/usn/USN-2417-1", "source": "security@debian.org"}, {"url": "http://www.ubuntu.com/usn/USN-2418-1", "source": "security@debian.org"}, {"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=766195", "source": "security@debian.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "A certain Debian patch to the IPv6 implementation in the Linux kernel 3.2.x through 3.2.63 does not properly validate arguments in ipv6_select_ident function calls, which allows local users to cause a denial of service (NULL pointer dereference and system crash) by leveraging (1) tun or (2) macvtap device access."}, {"lang": "es", "value": "Cierto parche de Debian a la implementaci\u00f3n IPv6 en el kernel de Linux 3.2.x hasta 3.2.63 no valida debidamente los argumentos en llamadas a la funci\u00f3n ipv6_select_ident, lo que permite a usuarios locales causar una denegaci\u00f3n de servicio (referencia a puntero nulo y ca\u00edda del sistema) mediante el aprovechamiento del acceso al dispositivo (1) tun o (2) macvtap."}], "lastModified": "2014-12-24T03:00:46.897", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3220B70-917F-4F9F-8A3B-2BF581281E8D"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2:*:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "7D47A395-821D-4BFF-996E-E849D9A40217"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "99372D07-C06A-41FA-9843-6D57F99AB5AF"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B9DC110-D260-4DB4-B8B0-EF1D160ADA07"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2:rc4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6192FE84-4D53-40D4-AF61-78CE7136141A"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2:rc5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "42FEF3CF-1302-45EB-89CC-3786FE4BAC1F"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2:rc6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE6A6B58-2C89-4DE4-BA57-78100818095C"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2:rc7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1D467F87-2F13-4D26-9A93-E0BA526FEA24"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FE348F7B-02DE-47D5-8011-F83DA9426021"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.1:*:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "8A603291-33B4-4195-B52D-D2A9938089C1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E91594EA-F0A3-41B3-A9C6-F7864FC2F229"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E1ECCDB-0208-48F6-B44F-16CC0ECE3503"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBA8B5DE-372E-47E0-A0F6-BE286D509CC3"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A1CA083-2CF8-45AE-9E15-1AA3A8352E3B"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "19D69A49-5290-4C5F-8157-719AD58D253D"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "290BD969-42E7-47B0-B21B-06DE4865432C"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "23A9E29E-DE78-4C73-9FBD-C2410F5FC8B8"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "018434C9-E75F-45CB-A169-DAB4B1D864D7"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC0AC68F-EC58-4C4F-8CBC-A59ECC00CCDE"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C123C844-F6D7-471E-A62E-F756042FB1CD"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A11C38BB-7FA2-49B0-AAC9-83DB387A06DB"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "61F3733C-E5F6-4855-B471-DF3FB823613B"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1DDCA75F-9A06-4457-9A45-38A38E7F7086"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7AEA837E-7864-4003-8DB7-111ED710A7E1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B6FE471F-2D1F-4A1D-A197-7E46B75787E1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FDA9E6AB-58DC-4EC5-A25C-11F9D0B38BF7"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC6B8DB3-B05B-41A2-B091-342D66AAE8F5"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "958F0FF8-33EF-4A71-A0BD-572C85211DBA"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBA39F48-B02F-4C48-B304-DA9CCA055244"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1FF841F3-48A7-41D7-9C45-A8170435A5EB"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF506916-A6DC-4B1E-90E5-959492AF55F4"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3CDAD1F-2C6A-48C0-8FAB-C2659373FA25"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.24:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4FFE4B22-C96A-43D0-B993-F51EDD9C5E0E"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F571CC8B-B212-4553-B463-1DB01D616E8A"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.26:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84E3E151-D437-48ED-A529-731EEFF88567"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.27:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E9E3EA3C-CCA5-4433-86E0-3D02C4757A0A"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.28:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F7AC4F7D-9FA6-4CF1-B2E9-70BF7D4D177C"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.29:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3CE3A80D-9648-43CC-8F99-D741ED6552BF"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.30:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C8A98C03-A465-41B4-A551-A26FEC7FFD94"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.31:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2FEFEB26-F810-4998-B3FB-1503A410DC18"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.32:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B7C3A120-3118-4BAA-902D-3916B52BC0D6"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.33:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB849D68-728A-4251-A8EF-86880D899416"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC95E791-7723-43B4-B201-F0800DD4E8B8"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.35:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E19EBEF-1E81-4B5B-B9FA-FBBB7A175FA4"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.36:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0FB55642-480B-46BC-BEA4-509287AA6FAB"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.37:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBFDF03D-79F0-43CD-9B4B-35202D6FCA06"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.38:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB44B030-5A02-42A1-9913-5D4E01A2F1E1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.39:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A1881D93-8E12-49BE-B685-956C3472F6F8"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.40:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D2C30CC-FAE9-4CE9-B0C4-0910B51F3C84"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.41:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D35B09BB-6027-463D-8A9B-4EEE92921FA0"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.42:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A2E2C3B-B2BC-4B33-A317-6CC25DCDA26D"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.43:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B654B47-FDC4-4822-A535-4F93023DF9DD"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.44:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BA4FBF31-5002-4A1C-8139-29681A246B26"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.45:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E767A54-CDEB-4E0B-B275-DC8267239568"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.46:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4B33C2C-BDEB-4DFC-A7A6-92BB3C76B049"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.47:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8F6023DD-BAD8-4C40-A929-516BBC288455"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.48:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3293248C-90AB-4D5A-8A05-2DFAD2E6816B"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.49:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48AD42D2-A646-47FC-888C-76F2E7CF536D"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.50:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EFB84CB9-69B7-4CBE-8A20-9B4ACF38AA36"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.51:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5BD5DA43-B954-4440-940F-7503383D5D81"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.52:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE9F0D08-5D4A-4B18-86F6-8FB7DC620FE3"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.53:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E2B2C3B-037E-421E-AF5E-27F433F1096D"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.54:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "499D2751-F16F-4B18-96A1-F8D734A52347"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.55:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7DDB0C10-FB88-4E2F-AAD4-2619A0BE3070"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.56:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "279AB216-B876-4D98-9AB3-CF9A0EAA2F32"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.57:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "355E7FF4-6742-4342-B0E6-0A42BFF71CB2"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.58:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C6CDBBE-4D05-4584-8884-6685B1F42C51"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.59:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E752E5AA-E1AC-47C0-897B-0ADB8B5CAFF0"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.60:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0130846-B04A-4FB3-B962-7D7FA8A93803"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.61:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF3A436B-07EB-4442-A947-5A26029F9A68"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.62:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E854209-BBC9-425D-AE89-D86D45E49FB2"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.2.63:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3DE2CA7-95DD-4049-8F97-0FE0C949BDCB"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:3.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C7871395-6B03-4E72-A355-47B9BDEA05F4"}], "operator": "OR"}]}], "evaluatorComment": "<a href=\"http://cwe.mitre.org/data/definitions/476.html\">CWE-476: NULL Pointer Dereference</a>", "sourceIdentifier": "security@debian.org"}