VYPR
Unrated severityNVD Advisory· Published Sep 28, 2014· Updated Jun 17, 2026

CVE-2014-0205

CVE-2014-0205

Description

The futex_wait function in kernel/futex.c in the Linux kernel before 2.6.37 does not properly maintain a certain reference count during requeue operations, which allows local users to cause a denial of service (use-after-free and system crash) or possibly gain privileges via a crafted application that triggers a zero count.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

14
  • Linux/Kernel14 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 13 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: <=2.6.36.4
    • cpe:2.3:o:linux:linux_kernel:2.6.36:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36.1:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36.2:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36.3:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36:rc1:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36:rc2:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36:rc3:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36:rc4:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36:rc5:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36:rc6:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36:rc7:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36:rc8:*:*:*:*:*:*
    • (no CPE)range: <2.6.37

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.