CVE-2013-0310

2013-02-2100:00:00

ubuntu.com

6.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:S/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

The cipso_v4_validate function in net/ipv4/cipso_ipv4.c in the Linux kernel
before 3.4.8 allows local users to cause a denial of service (NULL pointer
dereference and system crash) or possibly have unspecified other impact via
an IPOPT_CIPSO IP_OPTIONS setsockopt system call.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchlinux< 2.6.32-45.99UNKNOWN
ubuntu11.10noarchlinux< 3.0.0-25.41UNKNOWN
ubuntu12.04noarchlinux< 3.2.0-31.50UNKNOWN
ubuntu12.04noarchlinux-armadaxp< 3.2.0-1608.13UNKNOWN
ubuntu10.04noarchlinux-ec2< 2.6.32-350.56UNKNOWN
ubuntu10.04noarchlinux-lts-backport-oneiric< 3.0.0-25.41~lucid1UNKNOWN
ubuntu11.10noarchlinux-ti-omap4< 3.0.0-1215.27UNKNOWN
ubuntu12.04noarchlinux-ti-omap4< 3.2.0-1419.26UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	10.04	noarch	linux	< 2.6.32-45.99	UNKNOWN
ubuntu	11.10	noarch	linux	< 3.0.0-25.41	UNKNOWN
ubuntu	12.04	noarch	linux	< 3.2.0-31.50	UNKNOWN
ubuntu	12.04	noarch	linux-armadaxp	< 3.2.0-1608.13	UNKNOWN
ubuntu	10.04	noarch	linux-ec2	< 2.6.32-350.56	UNKNOWN
ubuntu	10.04	noarch	linux-lts-backport-oneiric	< 3.0.0-25.41~lucid1	UNKNOWN
ubuntu	11.10	noarch	linux-ti-omap4	< 3.0.0-1215.27	UNKNOWN
ubuntu	12.04	noarch	linux-ti-omap4	< 3.2.0-1419.26	UNKNOWN