CVE-2014-4014

Linux kernel <3.14.8 - Privilege Escalation

Title source: llm

Description

The capabilities implementation in the Linux kernel before 3.14.8 does not properly consider that namespaces are inapplicable to inodes, which allows local users to bypass intended chmod restrictions by first creating a user namespace, as demonstrated by setting the setgid bit on a file with group ownership of root.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Vitaly Nikolenko · clocallinux

https://www.exploit-db.com/exploits/33824

View Code ZIP pw:eip

nomisec WORKING POC 2 stars

by vnik5287 · poc

https://github.com/vnik5287/cve-2014-4014-privesc

View Code ZIP pw:eip

References (10)

[Patch] http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=23adbe12ef7d3d4195e80800ab36b37bee28cd03

[Third Party Advisory] http://secunia.com/advisories/59220

[Third Party Advisory, VDB Entry] http://www.exploit-db.com/exploits/33824

[Vendor Advisory] http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.8

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2014/06/10/4

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/67988

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1030394

[Issue Tracking, Third Party Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=1107966

[Third Party Advisory] https://github.com/torvalds/linux/commit/23adbe12ef7d3d4195e80800ab36b37bee28cd03

[Third Party Advisory] https://source.android.com/security/bulletin/2016-12-01.html

Scores

EPSS 0.0211

EPSS Percentile 84.2%

Details

CWE

CWE-264

Status published

Products (1)

linux/linux_kernel < 3.14.8

Published Jun 23, 2014

Tracked Since Feb 18, 2026