Unrated severityNVD Advisory· Published Feb 28, 2014· Updated Apr 29, 2026

CVE-2014-1690

Description

The help function in net/netfilter/nf_nat_irc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in which incorrect packet data is transmitted during use of the NAT mangle feature.

Affected products

Canonical/Ubuntu Linux2 versions
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*+ 1 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
Linux/Kernel
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Range: <3.12.8

Patches

2690d97ade05

https://github.com/torvalds/linuxvia nvd-ref

commit

Vulnerability mechanics

Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.12.8nvdMailing ListPatchVendor Advisory
www.openwall.com/lists/oss-security/2014/01/28/3nvdMailing ListPatchThird Party Advisory
bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
github.com/torvalds/linux/commit/2690d97ade05c5325cbf7c72b94b90d265659886nvdExploitPatchThird Party Advisory
www.ubuntu.com/usn/USN-2137-1nvdThird Party Advisory
www.ubuntu.com/usn/USN-2140-1nvdThird Party Advisory
www.ubuntu.com/usn/USN-2158-1nvdThird Party Advisory
git.kernel.orgnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000