The perf_swevent_init function in kernel/events/core.c in the Linux kernel before 3.8.9 uses an incorrect integer data type, which allows local users to gain privileges via a crafted perf_event_open system call.

CPENameOperatorVersion
androidlt4.0 to 4.3.1

CPE	Name	Operator	Version
	android	lt	4.0 to 4.3.1

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2094

launchpad.net/linux/+milestone/3.8.9

www.researchgate.net/publication/323635885_A_survey_of_Android_exploits_in_the_wild

nessus 25

openvas 36

suse 6

prion 1

redhat 5

ubuntu 8

cert 1

zdt 2

oraclelinux 5

f5 2

cve 1

amazon 1

exploitpack 2

attackerkb 1

canvas 1

ubuntucve 1

centos 1

cisa_kev 1

cbl_mariner 2

altlinux 1

packetstorm 2

securityvulns 2

debiancve 1

thn 3

seebug 1

veracode 1

slackware 1

exploitdb 2

securelist 1

kitploit 1

debian 1

osv 1

nessus

Oracle Linux 6 : kernel (ELSA-2013-0830)

2013-07-12 00:00:00

Ubuntu 12.04 LTS : linux-lts-quantal vulnerability (USN-1828-1)

2013-05-16 00:00:00

Amazon Linux AMI : kernel Privilege Escalation (ALAS-2013-190)

2014-03-20 00:00:00

openvas

Ubuntu Update for linux USN-1827-1

2013-05-17 00:00:00

Ubuntu: Security Advisory (USN-1827-1)

2013-05-17 00:00:00

RedHat Update for kernel RHSA-2013:0830-01

2013-05-17 00:00:00

suse

Security update for the Linux Kernel (x86) (critical)

2013-05-22 02:04:20

Security update for Linux kernel (critical)

2013-05-24 17:04:28

kernel: security and bugfix update (critical)

2013-06-10 18:16:01

prion

Integer overflow

2013-05-14 20:55:00

redhat

(RHSA-2013:0832) Important: kernel security update

2013-05-17 00:00:00

(RHSA-2013:0841) Important: kernel security update

2013-05-20 00:00:00

(RHSA-2013:0840) Important: kernel security update

2013-05-20 00:00:00

ubuntu

Linux kernel vulnerability

2013-05-16 00:00:00

Linux kernel vulnerability

2013-05-16 00:00:00

Linux kernel vulnerability

2013-05-16 00:00:00

cert

Linux kernel perf_swevent_enabled array out-of-bound access privilege escalation vulnerability

2013-05-17 00:00:00

zdt

Linux kernel perf_swevent_init - Local root Exploit

2013-06-11 00:00:00

Ubuntu 12.04.0-2LTS x64 perf_swevent_init - Kernel Local Root Exploit

2014-06-01 00:00:00

oraclelinux

kernel security update

2013-05-16 00:00:00

Unbreakable Enterprise kernel Security update

2013-05-15 00:00:00

kernel security, bug fix, and enhancement update

2013-06-11 00:00:00

K14445 : Linux kernel vulnerability CVE-2013-2094

2013-09-23 00:00:00

SOL14445 - Linux kernel vulnerability CVE-2013-2094

2013-06-06 00:00:00

cve

CVE-2013-2094

2013-05-14 20:55:00

amazon

Medium: kernel

2013-05-14 15:37:00

exploitpack

Linux Kernel 3.8.9 (x86-64) - perf_swevent_init Local Privilege Escalation (2)

2013-06-11 00:00:00

Linux Kernel 2.6.32 3.x (CentOS 56) - PERF_EVENTS Local Privilege Escalation (1)

2013-05-14 00:00:00

attackerkb

CVE-2013-2094

2013-05-14 00:00:00

canvas

Immunity Canvas: PERF_SWEVENT_INIT

2013-05-14 20:55:00

ubuntucve

CVE-2013-2094

2013-05-14 00:00:00

centos

kernel, perf, python security update

2013-05-17 00:36:04

cisa_kev

Linux Kernel Privilege Escalation Vulnerability

2022-09-15 00:00:00

cbl_mariner

CVE-2013-2094 affecting package kernel 5.15.148.2-2

2024-04-09 20:48:36

CVE-2013-2094 affecting package kernel 6.6.14.1-2

2024-04-02 21:08:16

altlinux

Security fix for the ALT Linux 7 package kernel-image-el-def version 2.6.32-alt6

2013-05-14 00:00:00

packetstorm

Linux perf_swevent_init Local Root

2013-06-11 00:00:00

Ubuntu 12.04 3.x x86_64 perf_swevent_init Local Root

2014-06-02 00:00:00

securityvulns

[USN-1849-1] Linux kernel (Raring HWE) vulnerability

2013-06-03 00:00:00

Linux kernel security vulnerabilities

2013-07-15 00:00:00

debiancve

CVE-2013-2094

2013-05-14 20:55:00

thn

Android malware loaded with Linux kernel privilege escalation exploit

2013-06-12 18:00:00

Android malware loaded with Linux kernel privilege escalation exploit

2013-06-12 07:00:00

Google Detects Android Spyware That Spies On WhatsApp, Skype Calls

2017-11-27 22:29:00

seebug

Linux Kernel < 3.8.9 - x86_64 perf_swevent_init Local Root Exploit

2014-07-01 00:00:00

veracode

Arbitrary Code Execution

2019-05-02 04:54:56

slackware

kernel

2013-05-20 15:28:44

exploitdb

Linux Kernel < 3.8.9 (x86-64) - 'perf_swevent_init' Local Privilege Escalation (2)

2013-06-11 00:00:00

Linux Kernel 2.6.32 < 3.x (CentOS 5/6) - 'PERF_EVENTS' Local Privilege Escalation (1)

2013-05-14 00:00:00

securelist

Skygofree: Following in the footsteps of HackingTeam

2018-01-16 10:00:58

kitploit

[Linux Exploit Suggester] Grab the Linux Operating Systems release version, and return a suggestive list of possible exploits

2013-08-29 00:48:00

debian

[SECURITY] [DSA 2669-1] linux security update

2013-05-16 02:48:53

osv

linux - several

2013-05-15 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON

Related for ANDROID:LIBPERF_EVENT