CVE-2014-2889

EPSS 0.13% · P32 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2014-2889

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Off-by-one error in the bpf_jit_compile function in arch/x86/net/bpf_jit_comp.c in the Linux kernel before 3.1.8, when BPF JIT is enabled, allows local users to cause a denial of service (system crash) or possibly gain privileges via a long jump after a conditional jump.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Linux kernel‘bpf_jit_compile’函数差一错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 3.1.7及之前版本的arch/x86/net/bpf_jit_comp.c文件中的‘bpf_jit_compile’函数存在差一错误漏洞。当使用BPF JIT时，本地攻击者可利用该漏洞造成拒绝服务（系统崩溃）或获取特权。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2014-2889

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2014-2889

请登录查看更多情报信息。

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a03ffcf873fe0f2565386ca8ef832144c42e67fax_refsource_CONFIRM
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.1.8x_refsource_CONFIRM
https://github.com/torvalds/linux/commit/a03ffcf873fe0f2565386ca8ef832144c42e67fax_refsource_CONFIRM
http://www.openwall.com/lists/oss-security/2014/04/18/6mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2014-2889

Same Patch Batch · n/a · 2014-04-27 · 19 CVEs total

CVE-2011-3152		Ubuntu Update Manager 加密问题漏洞
CVE-2014-2285		Net-SNMP snmptrapd 远程拒绝服务漏洞
CVE-2013-6053		OpenJPEG 内存损坏漏洞
CVE-2013-0296		pigz 竞争条件漏洞
CVE-2011-3603		router advertisement daemon 输入验证漏洞
CVE-2011-3602		radvd 路径遍历漏洞
CVE-2014-3007		Python Image Library和Pillow 操作系统命令注入漏洞
CVE-2014-0162		OpenStack 输入验证错误漏洞
CVE-2013-6887		OpenJPEG 拒绝服务漏洞
CVE-2014-0181		Linux kernel 权限许可和访问控制问题漏洞
CVE-2010-5105		Blender 后置链接漏洞
CVE-2014-1776		Microsoft Internet Explorer 释放后重用漏洞
CVE-2014-1766		Microsoft Windows 内核安全漏洞
CVE-2014-1765		Microsoft Internet Explorer 多个释放后重用漏洞
CVE-2014-1764		Microsoft Internet Explorer 权限许可和访问控制漏洞
CVE-2014-1763		Microsoft Internet Explorer 释放后重用漏洞
CVE-2014-1762		Microsoft Internet Explorer 任意代码执行漏洞
CVE-2014-2994		Acunetix Web Vulnerability Scanner 基于栈的缓冲区溢出漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2014-2889

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2014-2889

I. Basic Information for CVE-2014-2889

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2014-2889

III. Intelligence Information for CVE-2014-2889

Same Patch Batch · n/a · 2014-04-27 · 19 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2014-2889

Leave a comment