Denial of Service Vulnerability in Linux Kernel's rds_iw_laddr_check Function

Denial of Service Vulnerability in Linux Kernel's rds_iw_laddr_check Function

CVE-2014-2678 · MEDIUM Severity

AV:L/AC:M/AU:N/C:N/I:N/A:C

The rds_iw_laddr_check function in net/rds/iw.c in the Linux kernel through 3.14 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a bind system call for an RDS socket on a system that lacks RDS transports.

Learn more about our Cis Benchmark Audit For Bind.