Linux Kernel CVE Statistics

8 Linux Kernel CVEs in May 2014

Full month · Source: NIST NVD

April 2014 June 2014

In May 2014, 8 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 1 was rated High severity and 6 Medium. CVE-2014-0196 was confirmed as actively exploited in the wild and added to the CISA Known Exploited Vulnerabilities catalog. May's 8 CVEs represent 6% of all 2014 Linux kernel CVEs , down from April's 11 (a 27% month-over-month decrease) .

8
Total CVEs
0
Critical
1
High
6
Medium
1
Low
1
KEV Exploited

Actively Exploited CVEs — May 2014

1 CVE in CISA KEV

CVE-2014-0196 is the only Linux kernel CVE from May 2014 confirmed as actively exploited in the wild. It carries a CVSS score of 5.5 (Medium severity) and is listed in the CISA Known Exploited Vulnerabilities catalog.

CVE ID Severity CVSS Published Description
CVE-2014-0196 Medium KEV 5.5 2014-05-07 The n_tty_write function in drivers/tty/n_tty.c in the Linux kernel through 3.14.3 does not properl…
KEV data sourced from CISA Known Exploited Vulnerabilities catalog.
All CVEs — May 2014 8 CVEs
All (8) Critical (0) High (1) Medium (6) Low (1)
CVE ID Package Severity CVSS Published Description
CVE-2014-1737 linux High 7.2 2014-05-11 The raw_cmd_copyin function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly handle error…
CVE-2014-0240 linux Medium 6.2 2014-05-27 The mod_wsgi module before 3.5 for Apache, when daemon mode is enabled, does not properly handle error codes returned b…
CVE-2014-0196 linux Medium KEV 5.5 2014-05-07 The n_tty_write function in drivers/tty/n_tty.c in the Linux kernel through 3.14.3 does not properly manage tty driver …
CVE-2012-6647 linux Medium 4.9 2014-05-26 The futex_wait_requeue_pi function in kernel/futex.c in the Linux kernel before 3.5.1 does not ensure that calls have t…
CVE-2014-3144 linux Medium 4.9 2014-05-11 The (1) BPF_S_ANC_NLATTR and (2) BPF_S_ANC_NLATTR_NEST extension implementations in the sk_run_filter function in net/c…
CVE-2014-3122 linux Medium 4.9 2014-05-11 The try_to_unmap_cluster function in mm/rmap.c in the Linux kernel before 3.14.3 does not properly consider which pages…
CVE-2014-3145 linux Medium 4.9 2014-05-11 The BPF_S_ANC_NLATTR_NEST extension implementation in the sk_run_filter function in net/core/filter.c in the Linux kern…
CVE-2014-1738 linux Low 2.1 2014-05-11 The raw_cmd_copyout function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly restrict ac…

Frequently Asked Questions

How many Linux kernel CVEs were published in May 2014?

8 Linux kernel CVEs were published in May 2014, sourced from the NIST National Vulnerability Database. Of these, 0 were rated Critical severity, 1 High, and 6 Medium.

Which Linux kernel CVEs from May 2014 are actively exploited?

1 Linux kernel CVE from May 2014 is listed in the CISA Known Exploited Vulnerabilities catalog: CVE-2014-0196 (CVSS 5.5) . This indicates confirmed active exploitation in the wild. View all actively exploited 2014 CVEs →

How does May 2014 compare to other months?

May 2014's 8 CVEs represent 6% of all 2014 Linux kernel CVEs. Compared to April's 11 CVEs, this was a 27% decrease month-over-month. View the full 2014 breakdown →

April 2014 2014 statistics June 2014