CVE-2014-6416
EPSS 6.2%
Description
Buffer overflow in net/ceph/auth_x.c in Ceph, as used in the Linux kernel before 3.16.3, allows remote attackers to cause a denial of service (memory corruption and panic) or possibly have unspecified other impact via a long unencrypted auth ticket.
How to fix CVE-2014-6416
To remediate CVE-2014-6416, upgrade the affected package to a fixed version below.
- Debian/linux—upgrade to 3.16.3-1 or later
Is CVE-2014-6416 being exploited?
Moderate — EPSS is 6.2%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 3.16.3-1