Lucene search
PRIOn knowledge basePRION:CVE-2013-1958HistoryApr 24, 2013 - 7:55 p.m.
Design/Logic Flaw
2013-04-2419:55:00
PRIOn knowledge base
www.prio-n.com
3
The scm_check_creds function in net/core/scm.c in the Linux kernel before 3.8.6 does not properly enforce capability requirements for controlling the PID value associated with a UNIX domain socket, which allows local users to bypass intended access restrictions by leveraging the time interval during which a user namespace has been created but a PID namespace has not been created.
| CPE | Name | Operator | Version |
|---|---|---|---|
| linux_kernel | eq | 3.8.2 | |
| linux_kernel | eq | 3.8.0 | |
| linux_kernel | le | 3.8.5 | |
| linux_kernel | eq | 3.8.1 | |
| linux_kernel | eq | 3.8.3 | |
| linux_kernel | eq | 3.8.4 |
Related
cvelist
cvelist
CVE-2013-1958
2013-04-24 19:00:00
redhatcve
redhatcve
CVE-2013-1958
2015-10-30 10:14:58
cve
cve
CVE-2013-1958
2013-04-24 19:55:01
ubuntucve
ubuntucve
CVE-2013-1958
2013-04-24 00:00:00
seebug
seebug
Linux内核scm_check_creds安全绕过漏洞(CVE-2013-1958)
2013-04-28 00:00:00
nvd
nvd
CVE-2013-1958
2013-04-24 19:55:01
debiancve
debiancve
CVE-2013-1958
2013-04-24 19:55:01