Lucene search

K
ubuntucveUbuntu.comUB:CVE-2013-7270
HistoryJan 06, 2014 - 12:00 a.m.

CVE-2013-7270

2014-01-0600:00:00
ubuntu.com
ubuntu.com
12

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

EPSS

0

Percentile

10.1%

The packet_recvmsg function in net/packet/af_packet.c in the Linux kernel
before 3.12.4 updates a certain length value before ensuring that an
associated data structure has been initialized, which allows local users to
obtain sensitive information from kernel memory via a (1) recvfrom, (2)
recvmmsg, or (3) recvmsg system call.

Bugs

Rows per page:
1-10 of 131

References

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

EPSS

0

Percentile

10.1%