QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2013-7263

Back to search

CVE-2013-7263

Published: Jan 6, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

The Linux kernel before 3.12.4 updates certain length values before ensuring that associated data structures have been initialized, which allows local users to obtain sensitive information from kernel stack memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call, related to net/ipv4/ping.c, net/ipv4/raw.c, net/ipv4/udp.c, net/ipv6/raw.c, and net/ipv6/udp.c.

VendorProductVersions

n/a

n/a

affected
n/a

References

USN-2135-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2014:0159
vendor-advisory
x_refsource_REDHAT
USN-2138-1
vendor-advisory
x_refsource_UBUNTU
USN-2108-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2014:0285
vendor-advisory
x_refsource_REDHAT
USN-2113-1
vendor-advisory
x_refsource_UBUNTU
USN-2141-1
vendor-advisory
x_refsource_UBUNTU
SUSE-SU-2015:0736
vendor-advisory
x_refsource_SUSE
USN-2110-1
vendor-advisory
x_refsource_UBUNTU
USN-2136-1
vendor-advisory
x_refsource_UBUNTU
SUSE-SU-2015:0652
vendor-advisory
x_refsource_SUSE
USN-2139-1
vendor-advisory
x_refsource_UBUNTU
USN-2117-1
vendor-advisory
x_refsource_UBUNTU
SUSE-SU-2015:0481
vendor-advisory
x_refsource_SUSE
56036
third-party-advisory
x_refsource_SECUNIA
openSUSE-SU-2015:0566
vendor-advisory
x_refsource_SUSE
USN-2109-1
vendor-advisory
x_refsource_UBUNTU
SUSE-SU-2014:0459
vendor-advisory
x_refsource_SUSE
USN-2107-1
vendor-advisory
x_refsource_UBUNTU
55882
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now