Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2013-4470
HistoryNov 04, 2013 - 12:00 a.m.

CVE-2013-4470

2013-11-0400:00:00
ubuntu.com
ubuntu.com
16

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

43.5%

JSON

The Linux kernel before 3.12, when UDP Fragmentation Offload (UFO) is
enabled, does not properly initialize certain data structures, which allows
local users to cause a denial of service (memory corruption and system
crash) or possibly gain privileges via a crafted application that uses the
UDP_CORK option in a setsockopt system call and sends both short and long
packets, related to the ip_ufo_append_data function in net/ipv4/ip_output.c
and the ip6_ufo_append_data function in net/ipv6/ip6_output.c.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchlinux< 2.6.32-61.124UNKNOWN
ubuntu12.04noarchlinux< 3.2.0-58.88UNKNOWN
ubuntu12.10noarchlinux< 3.5.0-44.67UNKNOWN
ubuntu13.04noarchlinux< 3.8.0-35.50UNKNOWN
ubuntu13.10noarchlinux< 3.11.0-14.21UNKNOWN
ubuntu12.04noarchlinux-armadaxp< 3.2.0-1629.41UNKNOWN
ubuntu12.10noarchlinux-armadaxp< 3.5.0-1625.34UNKNOWN
ubuntu10.04noarchlinux-ec2< 2.6.32-365.79UNKNOWN
ubuntu12.04noarchlinux-lts-quantal< 3.5.0-44.67~precise1UNKNOWN
ubuntu12.04noarchlinux-lts-raring< 3.8.0-35.50~precise1UNKNOWN
Rows per page:
1-10 of 151

Related

prion 1
debiancve 1
veracode 2
cve 1
nessus 31
openvas 92
ubuntu 13
oraclelinux 5
fedora 25
amazon 1
redhat 4
altlinux 1
centos 1
suse 5
securityvulns 5
osv 1
mageia 10
prion
prion
Memory corruption
2013-11-04 15:55:00
debiancve
debiancve
CVE-2013-4470
2013-11-04 15:55:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 04:56:30
Access Controls Bypass
2019-05-16 01:22:57
cve
cve
CVE-2013-4470
2013-11-04 15:55:00
nessus
nessus
Ubuntu 12.10 : linux vulnerabilities (USN-2043-1)
2013-12-04 00:00:00
Fedora 18 : kernel-3.11.7-100.fc18 (2013-20748)
2013-11-13 00:00:00
Ubuntu 12.04 LTS : linux-lts-saucy vulnerabilities (USN-2042-1)
2013-12-04 00:00:00
openvas
openvas
Ubuntu Update for linux-ti-omap4 USN-2044-1
2013-12-04 00:00:00
Ubuntu Update for linux-ti-omap4 USN-2046-1
2013-12-04 00:00:00
Ubuntu Update for linux USN-2043-1
2013-12-04 00:00:00
ubuntu
ubuntu
Linux kernel (OMAP4) vulnerabilities
2013-12-03 00:00:00
Linux kernel vulnerabilities
2013-12-03 00:00:00
Linux kernel (OMAP4) vulnerabilities
2013-12-03 00:00:00
oraclelinux
oraclelinux
unbreakable enterprise kernel security update
2013-12-13 00:00:00
unbreakable enterprise kernel security update
2013-12-16 00:00:00
unbreakable enterprise kernel security update
2013-12-17 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: kernel-3.11.7-300.fc20
2013-11-10 07:57:32
[SECURITY] Fedora 19 Update: kernel-3.11.6-201.fc19
2013-11-05 02:59:47
[SECURITY] Fedora 19 Update: kernel-3.11.9-200.fc19
2013-11-24 03:49:23
amazon
amazon
Medium: kernel
2013-12-02 20:30:00
redhat
redhat
(RHSA-2013:1801) Important: kernel security, bug fix, and enhancement update
2013-12-12 00:00:00
(RHSA-2013:1802) Important: rhev-hypervisor6 security and bug fix update
2013-12-12 00:00:00
(RHSA-2014:0100) Important: kernel-rt security and bug fix update
2014-01-28 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 7 package kernel-image-el-def version 2.6.32-alt16
2013-12-20 00:00:00
centos
centos
kernel, perf, python security update
2013-12-13 00:18:44
suse
suse
Security update for Linux kernel (important)
2014-04-16 01:05:16
Security update for Linux Kernel (important)
2014-03-28 02:04:16
Security update for Linux kernel (important)
2014-04-17 02:05:07
securityvulns
securityvulns
[ MDVSA-2013:265 ] kernel
2013-11-13 00:00:00
[USN-2049-1] Linux kernel vulnerabilities
2013-12-09 00:00:00
Linux kernel security vulnerabilities
2013-11-26 00:00:00
osv
osv
linux-2.6 - security update
2014-07-12 00:00:00
mageia
mageia
Updated kernel-linus package fixes security vulnerabilites.
2013-11-22 23:00:03
Updated kernel-tmb package fixes security vulnerabilites.
2013-11-22 23:01:19
Updated kernel-vserver package fixes security vulnerabilites.
2013-11-22 23:06:50

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

43.5%

JSON
Related for UB:CVE-2013-4470
prion1debiancve1veracode2cve1nessus31openvas92ubuntu13oraclelinux5fedora25amazon1redhat4altlinux1centos1suse5securityvulns5osv1mageia10