Lucene search
HistoryJan 06, 2014 - 4:55 p.m.
CVE-2013-7263
4.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
7.2 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
10.1%
The Linux kernel before 3.12.4 updates certain length values before ensuring that associated data structures have been initialized, which allows local users to obtain sensitive information from kernel stack memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call, related to net/ipv4/ping.c, net/ipv4/raw.c, net/ipv4/udp.c, net/ipv6/raw.c, and net/ipv6/udp.c.
Affected configurations
Node
linuxlinux_kernelRange≤3.12.3
ORlinuxlinux_kernelMatch3.0rc1
ORlinuxlinux_kernelMatch3.0rc2
ORlinuxlinux_kernelMatch3.0rc3
ORlinuxlinux_kernelMatch3.0rc4
ORlinuxlinux_kernelMatch3.0rc5
ORlinuxlinux_kernelMatch3.0rc6
ORlinuxlinux_kernelMatch3.0rc7
ORlinuxlinux_kernelMatch3.0.1
ORlinuxlinux_kernelMatch3.0.2
ORlinuxlinux_kernelMatch3.0.3
ORlinuxlinux_kernelMatch3.0.4
ORlinuxlinux_kernelMatch3.0.5
ORlinuxlinux_kernelMatch3.0.6
ORlinuxlinux_kernelMatch3.0.7
ORlinuxlinux_kernelMatch3.0.8
ORlinuxlinux_kernelMatch3.0.9
ORlinuxlinux_kernelMatch3.0.10
ORlinuxlinux_kernelMatch3.0.11
ORlinuxlinux_kernelMatch3.0.12
ORlinuxlinux_kernelMatch3.0.13
ORlinuxlinux_kernelMatch3.0.14
ORlinuxlinux_kernelMatch3.0.15
ORlinuxlinux_kernelMatch3.0.16
ORlinuxlinux_kernelMatch3.0.17
ORlinuxlinux_kernelMatch3.0.18
ORlinuxlinux_kernelMatch3.0.19
ORlinuxlinux_kernelMatch3.0.20
ORlinuxlinux_kernelMatch3.0.21
ORlinuxlinux_kernelMatch3.0.22
ORlinuxlinux_kernelMatch3.0.23
ORlinuxlinux_kernelMatch3.0.24
ORlinuxlinux_kernelMatch3.0.25
ORlinuxlinux_kernelMatch3.0.26
ORlinuxlinux_kernelMatch3.0.27
ORlinuxlinux_kernelMatch3.0.28
ORlinuxlinux_kernelMatch3.0.29
ORlinuxlinux_kernelMatch3.0.30
ORlinuxlinux_kernelMatch3.0.31
ORlinuxlinux_kernelMatch3.0.32
ORlinuxlinux_kernelMatch3.0.33
ORlinuxlinux_kernelMatch3.0.34
ORlinuxlinux_kernelMatch3.0.35
ORlinuxlinux_kernelMatch3.0.36
ORlinuxlinux_kernelMatch3.0.37
ORlinuxlinux_kernelMatch3.0.38
ORlinuxlinux_kernelMatch3.0.39
ORlinuxlinux_kernelMatch3.0.40
ORlinuxlinux_kernelMatch3.0.41
ORlinuxlinux_kernelMatch3.0.42
ORlinuxlinux_kernelMatch3.0.43
ORlinuxlinux_kernelMatch3.0.44
ORlinuxlinux_kernelMatch3.0.45
ORlinuxlinux_kernelMatch3.0.46
ORlinuxlinux_kernelMatch3.0.47
ORlinuxlinux_kernelMatch3.0.48
ORlinuxlinux_kernelMatch3.0.49
ORlinuxlinux_kernelMatch3.0.50
ORlinuxlinux_kernelMatch3.0.51
ORlinuxlinux_kernelMatch3.0.52
ORlinuxlinux_kernelMatch3.0.53
ORlinuxlinux_kernelMatch3.0.54
ORlinuxlinux_kernelMatch3.0.55
ORlinuxlinux_kernelMatch3.0.56
ORlinuxlinux_kernelMatch3.0.57
ORlinuxlinux_kernelMatch3.0.58
ORlinuxlinux_kernelMatch3.0.59
ORlinuxlinux_kernelMatch3.0.60
ORlinuxlinux_kernelMatch3.0.61
ORlinuxlinux_kernelMatch3.0.62
ORlinuxlinux_kernelMatch3.0.63
ORlinuxlinux_kernelMatch3.0.64
ORlinuxlinux_kernelMatch3.0.65
ORlinuxlinux_kernelMatch3.0.66
ORlinuxlinux_kernelMatch3.0.67
ORlinuxlinux_kernelMatch3.0.68
ORlinuxlinux_kernelMatch3.1
ORlinuxlinux_kernelMatch3.1rc1
ORlinuxlinux_kernelMatch3.1rc2
ORlinuxlinux_kernelMatch3.1rc3
ORlinuxlinux_kernelMatch3.1rc4
ORlinuxlinux_kernelMatch3.1.1
ORlinuxlinux_kernelMatch3.1.2
ORlinuxlinux_kernelMatch3.1.3
ORlinuxlinux_kernelMatch3.1.4
ORlinuxlinux_kernelMatch3.1.5
ORlinuxlinux_kernelMatch3.1.6
ORlinuxlinux_kernelMatch3.1.7
ORlinuxlinux_kernelMatch3.1.8
ORlinuxlinux_kernelMatch3.1.9
ORlinuxlinux_kernelMatch3.1.10
ORlinuxlinux_kernelMatch3.2
ORlinuxlinux_kernelMatch3.2rc2
ORlinuxlinux_kernelMatch3.2rc3
ORlinuxlinux_kernelMatch3.2rc4
ORlinuxlinux_kernelMatch3.2rc5
ORlinuxlinux_kernelMatch3.2rc6
ORlinuxlinux_kernelMatch3.2rc7
ORlinuxlinux_kernelMatch3.2.1
ORlinuxlinux_kernelMatch3.2.2
ORlinuxlinux_kernelMatch3.2.3
ORlinuxlinux_kernelMatch3.2.4
ORlinuxlinux_kernelMatch3.2.5
ORlinuxlinux_kernelMatch3.2.6
ORlinuxlinux_kernelMatch3.2.7
ORlinuxlinux_kernelMatch3.2.8
ORlinuxlinux_kernelMatch3.2.9
ORlinuxlinux_kernelMatch3.2.10
ORlinuxlinux_kernelMatch3.2.11
ORlinuxlinux_kernelMatch3.2.12
ORlinuxlinux_kernelMatch3.2.13
ORlinuxlinux_kernelMatch3.2.14
ORlinuxlinux_kernelMatch3.2.15
ORlinuxlinux_kernelMatch3.2.16
ORlinuxlinux_kernelMatch3.2.17
ORlinuxlinux_kernelMatch3.2.18
ORlinuxlinux_kernelMatch3.2.19
ORlinuxlinux_kernelMatch3.2.20
ORlinuxlinux_kernelMatch3.2.21
ORlinuxlinux_kernelMatch3.2.22
ORlinuxlinux_kernelMatch3.2.23
ORlinuxlinux_kernelMatch3.2.24
ORlinuxlinux_kernelMatch3.2.25
ORlinuxlinux_kernelMatch3.2.26
ORlinuxlinux_kernelMatch3.2.27
ORlinuxlinux_kernelMatch3.2.28
ORlinuxlinux_kernelMatch3.2.29
ORlinuxlinux_kernelMatch3.2.30
ORlinuxlinux_kernelMatch3.3
ORlinuxlinux_kernelMatch3.3rc1
ORlinuxlinux_kernelMatch3.3rc2
ORlinuxlinux_kernelMatch3.3rc3
ORlinuxlinux_kernelMatch3.3rc4
ORlinuxlinux_kernelMatch3.3rc5
ORlinuxlinux_kernelMatch3.3rc6
ORlinuxlinux_kernelMatch3.3rc7
ORlinuxlinux_kernelMatch3.3.1
ORlinuxlinux_kernelMatch3.3.2
ORlinuxlinux_kernelMatch3.3.3
ORlinuxlinux_kernelMatch3.3.4
ORlinuxlinux_kernelMatch3.3.5
ORlinuxlinux_kernelMatch3.3.6
ORlinuxlinux_kernelMatch3.3.7
ORlinuxlinux_kernelMatch3.3.8
ORlinuxlinux_kernelMatch3.4
ORlinuxlinux_kernelMatch3.4rc1
ORlinuxlinux_kernelMatch3.4rc2
ORlinuxlinux_kernelMatch3.4rc3
ORlinuxlinux_kernelMatch3.4rc4
ORlinuxlinux_kernelMatch3.4rc5
ORlinuxlinux_kernelMatch3.4rc6
ORlinuxlinux_kernelMatch3.4rc7
ORlinuxlinux_kernelMatch3.4.1
ORlinuxlinux_kernelMatch3.4.2
ORlinuxlinux_kernelMatch3.4.3
ORlinuxlinux_kernelMatch3.4.4
ORlinuxlinux_kernelMatch3.4.5
ORlinuxlinux_kernelMatch3.4.6
ORlinuxlinux_kernelMatch3.4.7
ORlinuxlinux_kernelMatch3.4.8
ORlinuxlinux_kernelMatch3.4.9
ORlinuxlinux_kernelMatch3.4.10
ORlinuxlinux_kernelMatch3.4.11
ORlinuxlinux_kernelMatch3.4.12
ORlinuxlinux_kernelMatch3.4.13
ORlinuxlinux_kernelMatch3.4.14
ORlinuxlinux_kernelMatch3.4.15
ORlinuxlinux_kernelMatch3.4.16
ORlinuxlinux_kernelMatch3.4.17
ORlinuxlinux_kernelMatch3.4.18
ORlinuxlinux_kernelMatch3.4.19
ORlinuxlinux_kernelMatch3.4.20
ORlinuxlinux_kernelMatch3.4.21
ORlinuxlinux_kernelMatch3.4.22
ORlinuxlinux_kernelMatch3.4.23
ORlinuxlinux_kernelMatch3.4.24
ORlinuxlinux_kernelMatch3.4.25
ORlinuxlinux_kernelMatch3.4.26
ORlinuxlinux_kernelMatch3.4.27
ORlinuxlinux_kernelMatch3.4.28
ORlinuxlinux_kernelMatch3.4.29
ORlinuxlinux_kernelMatch3.4.30
ORlinuxlinux_kernelMatch3.4.31
ORlinuxlinux_kernelMatch3.4.32
ORlinuxlinux_kernelMatch3.5.1
ORlinuxlinux_kernelMatch3.5.2
ORlinuxlinux_kernelMatch3.5.3
ORlinuxlinux_kernelMatch3.5.4
ORlinuxlinux_kernelMatch3.5.5
ORlinuxlinux_kernelMatch3.5.6
ORlinuxlinux_kernelMatch3.5.7
ORlinuxlinux_kernelMatch3.6
ORlinuxlinux_kernelMatch3.6.1
ORlinuxlinux_kernelMatch3.6.2
ORlinuxlinux_kernelMatch3.6.3
ORlinuxlinux_kernelMatch3.6.4
ORlinuxlinux_kernelMatch3.6.5
ORlinuxlinux_kernelMatch3.6.6
ORlinuxlinux_kernelMatch3.6.7
ORlinuxlinux_kernelMatch3.6.8
ORlinuxlinux_kernelMatch3.6.9
ORlinuxlinux_kernelMatch3.6.10
ORlinuxlinux_kernelMatch3.6.11
ORlinuxlinux_kernelMatch3.7
ORlinuxlinux_kernelMatch3.7.1
ORlinuxlinux_kernelMatch3.7.2
ORlinuxlinux_kernelMatch3.7.3
ORlinuxlinux_kernelMatch3.7.4
ORlinuxlinux_kernelMatch3.7.5
ORlinuxlinux_kernelMatch3.7.6
ORlinuxlinux_kernelMatch3.7.7
ORlinuxlinux_kernelMatch3.7.8
ORlinuxlinux_kernelMatch3.7.9
ORlinuxlinux_kernelMatch3.7.10
ORlinuxlinux_kernelMatch3.8.0
ORlinuxlinux_kernelMatch3.8.1
ORlinuxlinux_kernelMatch3.8.2
ORlinuxlinux_kernelMatch3.8.3
ORlinuxlinux_kernelMatch3.8.4
ORlinuxlinux_kernelMatch3.8.5
ORlinuxlinux_kernelMatch3.8.6
ORlinuxlinux_kernelMatch3.8.7
ORlinuxlinux_kernelMatch3.8.8
ORlinuxlinux_kernelMatch3.8.9
ORlinuxlinux_kernelMatch3.8.10
ORlinuxlinux_kernelMatch3.8.11
ORlinuxlinux_kernelMatch3.8.12
ORlinuxlinux_kernelMatch3.8.13
ORlinuxlinux_kernelMatch3.9rc1
ORlinuxlinux_kernelMatch3.9rc2
ORlinuxlinux_kernelMatch3.9rc3
ORlinuxlinux_kernelMatch3.9rc4
ORlinuxlinux_kernelMatch3.9rc5
ORlinuxlinux_kernelMatch3.9rc6
ORlinuxlinux_kernelMatch3.9rc7
ORlinuxlinux_kernelMatch3.9.0
ORlinuxlinux_kernelMatch3.9.1
ORlinuxlinux_kernelMatch3.9.2
ORlinuxlinux_kernelMatch3.9.3
ORlinuxlinux_kernelMatch3.9.4
ORlinuxlinux_kernelMatch3.9.5
ORlinuxlinux_kernelMatch3.9.6
ORlinuxlinux_kernelMatch3.9.7
ORlinuxlinux_kernelMatch3.9.8
ORlinuxlinux_kernelMatch3.9.9
ORlinuxlinux_kernelMatch3.9.10
ORlinuxlinux_kernelMatch3.9.11
ORlinuxlinux_kernelMatch3.10.1
ORlinuxlinux_kernelMatch3.10.2
ORlinuxlinux_kernelMatch3.10.3
ORlinuxlinux_kernelMatch3.10.4
ORlinuxlinux_kernelMatch3.10.5
ORlinuxlinux_kernelMatch3.10.6
ORlinuxlinux_kernelMatch3.10.7
ORlinuxlinux_kernelMatch3.10.8
ORlinuxlinux_kernelMatch3.10.9
ORlinuxlinux_kernelMatch3.10.10
ORlinuxlinux_kernelMatch3.10.11
ORlinuxlinux_kernelMatch3.10.12
ORlinuxlinux_kernelMatch3.10.13
ORlinuxlinux_kernelMatch3.10.14
ORlinuxlinux_kernelMatch3.10.15
ORlinuxlinux_kernelMatch3.10.16
ORlinuxlinux_kernelMatch3.10.17
ORlinuxlinux_kernelMatch3.10.18
ORlinuxlinux_kernelMatch3.10.19
ORlinuxlinux_kernelMatch3.10.20
ORlinuxlinux_kernelMatch3.10.21
ORlinuxlinux_kernelMatch3.10.22
ORlinuxlinux_kernelMatch3.10.23
ORlinuxlinux_kernelMatch3.11
ORlinuxlinux_kernelMatch3.11.1
ORlinuxlinux_kernelMatch3.11.2
ORlinuxlinux_kernelMatch3.11.3
ORlinuxlinux_kernelMatch3.11.4
ORlinuxlinux_kernelMatch3.11.5
ORlinuxlinux_kernelMatch3.11.6
ORlinuxlinux_kernelMatch3.11.7
ORlinuxlinux_kernelMatch3.11.8
ORlinuxlinux_kernelMatch3.11.9
ORlinuxlinux_kernelMatch3.11.10
ORlinuxlinux_kernelMatch3.12
ORlinuxlinux_kernelMatch3.12.1
ORlinuxlinux_kernelMatch3.12.2
References
git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=bceaa90240b6019ed73b49965eac7d167610be69
lists.opensuse.org/opensuse-security-announce/2014-03/msg00026.html
lists.opensuse.org/opensuse-security-announce/2015-03/msg00010.html
lists.opensuse.org/opensuse-security-announce/2015-03/msg00025.html
lists.opensuse.org/opensuse-security-announce/2015-04/msg00000.html
lists.opensuse.org/opensuse-security-announce/2015-04/msg00015.html
rhn.redhat.com/errata/RHSA-2014-0159.html
rhn.redhat.com/errata/RHSA-2014-0285.html
seclists.org/oss-sec/2014/q1/29
secunia.com/advisories/55882
secunia.com/advisories/56036
www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.12.4
www.openwall.com/lists/oss-security/2013/11/28/13
www.ubuntu.com/usn/USN-2107-1
www.ubuntu.com/usn/USN-2108-1
www.ubuntu.com/usn/USN-2109-1
www.ubuntu.com/usn/USN-2110-1
www.ubuntu.com/usn/USN-2113-1
www.ubuntu.com/usn/USN-2117-1
www.ubuntu.com/usn/USN-2135-1
www.ubuntu.com/usn/USN-2136-1
www.ubuntu.com/usn/USN-2138-1
www.ubuntu.com/usn/USN-2139-1
www.ubuntu.com/usn/USN-2141-1
bugzilla.redhat.com/show_bug.cgi?id=1035875
github.com/torvalds/linux/commit/bceaa90240b6019ed73b49965eac7d167610be69
Related
f5
f5
SOL15983 - Linux kernel vulnerability CVE-2013-7263
2015-01-12 00:00:00
K15983 : Linux kernel vulnerability CVE-2013-7263
2015-01-12 00:00:00
ubuntucve
ubuntucve
CVE-2013-7263
2014-01-06 00:00:00
debiancve
debiancve
CVE-2013-7263
2014-01-06 16:55:09
prion
prion
Code injection
2014-01-06 16:55:00
Design/Logic Flaw
2014-01-06 16:55:00
veracode
veracode
Sensitive Information Leakage
2019-01-15 09:01:27
Sensitive Information Disclosure
2019-05-02 04:57:44
Sensitive Information Disclosure
2019-05-02 04:57:44
cve
cve
CVE-2013-7263
2014-01-06 16:55:09
CVE-2013-6405
2014-01-06 16:55:08
cvelist
cvelist
CVE-2013-7263
2014-01-06 11:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2014-3011)
2015-10-06 00:00:00
Oracle: Security Advisory (ELSA-2014-3010)
2015-10-06 00:00:00
Oracle: Security Advisory (ELSA-2014-3009)
2015-10-06 00:00:00
nessus
nessus
Oracle Linux 5 / 6 : unbreakable enterprise kernel (ELSA-2014-3009)
2014-02-17 00:00:00
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2014-3010)
2014-02-17 00:00:00
Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2014-3011)
2014-02-17 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2014-02-14 00:00:00
Unbreakable Enterprise kernel security update
2014-02-14 00:00:00
unbreakable enterprise kernel security update
2014-02-13 00:00:00
centos
centos
kernel, perf, python security update
2014-02-12 04:44:55
kernel security update
2014-03-13 10:35:06
redhat
redhat
(RHSA-2014:0159) Important: kernel security and bug fix update
2014-02-11 00:00:00
(RHSA-2014:0285) Important: kernel security, bug fix, and enhancement update
2014-03-12 00:00:00
amazon
amazon
Medium: kernel
2014-02-26 14:26:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2014-02-18 00:00:00
Linux kernel (EC2) vulnerabilities
2014-02-18 00:00:00
Linux kernel vulnerabilities
2014-02-18 00:00:00
nvd
nvd
CVE-2013-6405
2014-01-06 16:55:08
suse
suse
Security update for Linux Kernel (important)
2014-03-28 02:04:16
Security update for Linux kernel (important)
2014-04-16 01:05:16
Security update for Linux kernel (important)
2014-04-17 02:05:07
securityvulns
securityvulns
[ MDVSA-2014:001 ] kernel
2014-01-14 00:00:00
Linux kernel security vulnerabilities
2014-03-31 00:00:00
debian
debian
[SECURITY] [DSA 2906-1] linux-2.6 security update
2014-04-25 00:12:10
osv
osv
linux-2.6 - several
2014-04-24 00:00:00
4.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:C/I:N/A:N
7.2 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
10.1%
Related for NVD:CVE-2013-7263