CVE-2013-1763

Published: Feb 28, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Array index error in the __sock_diag_rcv_msg function in net/core/sock_diag.c in the Linux kernel before 3.7.10 allows local users to gain privileges via a large family value in a Netlink message.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://bugzilla.redhat.com/show_bug.cgi?id=915052

x_refsource_CONFIRM

https://github.com/torvalds/linux/commit/6e601a53566d84e1ffd25e7b6fe0b6894ffd79c0

x_refsource_CONFIRM

[oss-security] 20130225 Re: CVE Request: kernel - sock_diag: Fix out-of-bounds access to sock_diag_handlers[]

mailing-list

x_refsource_MLIST

MDVSA-2013:176

vendor-advisory

x_refsource_MANDRIVA

USN-1750-1

vendor-advisory

x_refsource_UBUNTU

33336

exploit

x_refsource_EXPLOIT-DB

[oss-security] 20130224 Re: CVE Request: kernel - sock_diag: Fix out-of-bounds access to sock_diag_handlers[]

mailing-list

x_refsource_MLIST

openSUSE-SU-2013:0395

vendor-advisory

x_refsource_SUSE

24746

exploit

x_refsource_EXPLOIT-DB

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.7.10

x_refsource_CONFIRM

USN-1749-1

vendor-advisory

x_refsource_UBUNTU

24555

exploit

x_refsource_EXPLOIT-DB

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6e601a53566d84e1ffd25e7b6fe0b6894ffd79c0

x_refsource_CONFIRM

USN-1751-1

vendor-advisory

x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-1763

Description

Affected Products

References