CVE-2013-1848

2013-03-2200:00:00

ubuntu.com

6.2 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

43.1%

JSON

fs/ext3/super.c in the Linux kernel before 3.8.4 uses incorrect arguments
to functions in certain circumstances related to printk input, which allows
local users to conduct format-string attacks and possibly gain privileges
via a crafted application.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchlinux< 3.2.0-41.66UNKNOWN
ubuntu12.10noarchlinux< 3.5.0-28.48UNKNOWN
ubuntu12.04noarchlinux-armadaxp< 3.2.0-1617.27UNKNOWN
ubuntu12.10noarchlinux-armadaxp< 3.5.0-1612.19UNKNOWN
ubuntu12.04noarchlinux-lts-quantal< 3.5.0-28.48~precise1UNKNOWN
ubuntu12.04noarchlinux-ti-omap4< 3.2.0-1430.39UNKNOWN
ubuntu12.10noarchlinux-ti-omap4< 3.5.0-223.34UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	12.04	noarch	linux	< 3.2.0-41.66	UNKNOWN
ubuntu	12.10	noarch	linux	< 3.5.0-28.48	UNKNOWN
ubuntu	12.04	noarch	linux-armadaxp	< 3.2.0-1617.27	UNKNOWN
ubuntu	12.10	noarch	linux-armadaxp	< 3.5.0-1612.19	UNKNOWN
ubuntu	12.04	noarch	linux-lts-quantal	< 3.5.0-28.48~precise1	UNKNOWN
ubuntu	12.04	noarch	linux-ti-omap4	< 3.2.0-1430.39	UNKNOWN
ubuntu	12.10	noarch	linux-ti-omap4	< 3.5.0-223.34	UNKNOWN