CVE-2014-9940

CVSS v3.1 7 (High)

CVSS v2.0 7.6 (High)

EPSS 0.08 % (35^th)

Affected Products 2

Advisories 3

The regulator_ena_gpio_free function in drivers/regulator/core.c in the Linux kernel before 3.19 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted application.

Weaknesses

CWE-416: Use After Free

CVE Status: PUBLISHED
CNA: Android (associated with Google Inc. or Open Handset Alliance)
Published Date: 2017-05-02 21:59:00
(7 years ago)
Updated Date: 2023-12-28 18:11:41
(8 months ago)

Affected Products

Google

Android

Linux

Linux Kernel

Configuration #1

	CPE23	From	Up To
Linux Kernel above 3.10 version and prior 3.16.45 version	cpe:2.3:o:linux:linux_kernel	> 3.10	< 3.16.45
Linux Kernel from 3.17 version and prior 3.18.52 version	cpe:2.3:o:linux:linux_kernel	>= 3.17	< 3.18.52
Linux Kernel 3.10	cpe:2.3:o:linux:linux_kernel:3.10:-
Linux Kernel 3.10 Rc1	cpe:2.3:o:linux:linux_kernel:3.10:rc1
Linux Kernel 3.10 Rc2	cpe:2.3:o:linux:linux_kernel:3.10:rc2
Linux Kernel 3.10 Rc3	cpe:2.3:o:linux:linux_kernel:3.10:rc3
Linux Kernel 3.10 Rc4	cpe:2.3:o:linux:linux_kernel:3.10:rc4
Linux Kernel 3.10 Rc5	cpe:2.3:o:linux:linux_kernel:3.10:rc5
Linux Kernel 3.10 Rc6	cpe:2.3:o:linux:linux_kernel:3.10:rc6
Linux Kernel 3.10 Rc7	cpe:2.3:o:linux:linux_kernel:3.10:rc7

Configuration #2

		CPE23	From	Up To
	Google Android 7.1.1 and prior versions	cpe:2.3:o:google:android		<= 7.1.1