CVE-2013-6383

Published: Nov 27, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

The aac_compat_ioctl function in drivers/scsi/aacraid/linit.c in the Linux kernel before 3.11.8 does not require the CAP_SYS_RAWIO capability, which allows local users to bypass intended access restrictions via a crafted ioctl call.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

USN-2108-1

vendor-advisory

x_refsource_UBUNTU

RHSA-2014:0285

vendor-advisory

x_refsource_REDHAT

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f856567b930dfcdbc3323261bf77240ccdde01f5

x_refsource_CONFIRM

[oss-security] 20131122 Linux kernel CVE fixes

mailing-list

x_refsource_MLIST

USN-2073-1

vendor-advisory

x_refsource_UBUNTU

USN-2076-1

vendor-advisory

x_refsource_UBUNTU

USN-2069-1

vendor-advisory

x_refsource_UBUNTU

USN-2070-1

vendor-advisory

x_refsource_UBUNTU

https://github.com/torvalds/linux/commit/f856567b930dfcdbc3323261bf77240ccdde01f5

x_refsource_CONFIRM

USN-2066-1

vendor-advisory

x_refsource_UBUNTU

USN-2071-1

vendor-advisory

x_refsource_UBUNTU

USN-2074-1

vendor-advisory

x_refsource_UBUNTU

USN-2107-1

vendor-advisory

x_refsource_UBUNTU

USN-2068-1

vendor-advisory

x_refsource_UBUNTU

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.11.8

x_refsource_CONFIRM

USN-2072-1

vendor-advisory

x_refsource_UBUNTU

RHSA-2014:0100

vendor-advisory

x_refsource_REDHAT

USN-2075-1

vendor-advisory

x_refsource_UBUNTU

USN-2067-1

vendor-advisory

x_refsource_UBUNTU

https://bugzilla.redhat.com/show_bug.cgi?id=1033530

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-6383

Description

Affected Products

References