CVE-2014-7145

CVSS v2.0 7.8 (High)

EPSS 0.76 % (82^th)

Affected Products 6

Advisories 5

The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a denial of service (NULL pointer dereference and client system crash) or possibly have unspecified other impact by deleting the IPC$ share during resolution of DFS referrals.

Weaknesses

CWE-399: Resource Management Errors

CVE Status: PUBLISHED
CNA: MITRE
Published Date: 2014-09-28 10:55:10
(10 years ago)
Updated Date: 2023-11-07 02:21:12
(10 months ago)

Affected Products

Canonical

Ubuntu Linux

Linux

Linux Kernel

Redhat

Configuration #1

		CPE23	From	Up To
	Redhat Enterprise Linux Desktop 7.0	cpe:2.3:o:redhat:enterprise_linux_desktop:7.0
	Redhat Enterprise Linux Hpc Node 7.0	cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0
	Redhat Enterprise Linux Server 7.0	cpe:2.3:o:redhat:enterprise_linux_server:7.0
	Redhat Enterprise Linux Workstation 7.0	cpe:2.3:o:redhat:enterprise_linux_workstation:7.0

Configuration #2

	CPE23	From	Up To
Linux Kernel from 3.6 version and prior 3.10.55 version	cpe:2.3:o:linux:linux_kernel	>= 3.6	< 3.10.55
Linux Kernel from 3.11 version and prior 3.12.29 version	cpe:2.3:o:linux:linux_kernel	>= 3.11	< 3.12.29
Linux Kernel from 3.13 version and prior 3.14.19 version	cpe:2.3:o:linux:linux_kernel	>= 3.13	< 3.14.19
Linux Kernel from 3.15 version and prior 3.16.3 version	cpe:2.3:o:linux:linux_kernel	>= 3.15	< 3.16.3

Configuration #3

		CPE23	From	Up To
	Canonical Ubuntu Linux 12.04	cpe:2.3:o:canonical:ubuntu_linux:12.04:::*:lts