CVE-2014-1419

NameCVE-2014-1419
DescriptionRace condition in the power policy functions in policy-funcs in acpi-support before 0.142 allows local users to gain privileges via unspecified vectors.
SourceCVE (at NVD; LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDLA-30-1, DSA-2984-1
NVD severitymedium (attack range: local)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
acpi-support (PTS)wheezy (security), wheezy0.140-5+deb7u3fixed
jessie0.142-6fixed
stretch, sid0.142-8fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
acpi-supportsource(unstable)0.142-2medium
acpi-supportsourcesqueeze0.137-5+deb6u1mediumDLA-30-1
acpi-supportsourcewheezy0.140-5+deb7u1mediumDSA-2984-1

Search for package or bug name: Reporting problems