CVE-2013-3222

MEDIUM

Description

The vcc_recvmsg function in net/atm/common.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9b3e617f3df53822345a8573b6d358f6b9e5ed87

http://lists.fedoraproject.org/pipermail/package-announce/2013-April/103750.html

http://lists.fedoraproject.org/pipermail/package-announce/2013-May/104480.html

http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00016.html

http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00018.html

http://lists.opensuse.org/opensuse-updates/2013-12/msg00129.html

http://rhn.redhat.com/errata/RHSA-2013-1051.html

http://www.mandriva.com/security/advisories?name=MDVSA-2013:176

http://www.openwall.com/lists/oss-security/2013/04/14/3

http://www.ubuntu.com/usn/USN-1837-1

https://github.com/torvalds/linux/commit/9b3e617f3df53822345a8573b6d358f6b9e5ed87

https://lkml.org/lkml/2013/4/14/107

Details

Source: MITRE

Published: 2013-04-22

Updated: 2017-11-29

Type: CWE-200

Risk Information

CVSS v2.0

Base Score: 4.9

Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N

Impact Score: 6.9

Exploitability Score: 3.9

Severity: MEDIUM

Vulnerable Software

Configuration 1

cpe:2.3:o:linux:linux_kernel:3.9:rc1:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:3.9:rc2:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:3.9:rc3:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:3.9:rc4:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:3.9:rc5:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:*:rc6:*:*:*:*:*:* versions up to 3.9 (inclusive)

Tenable Plugins

View all (32 total)

ID	Name	Product	Family	Severity
83618	SUSE SLES10 Security Update : kernel (SUSE-SU-2014:0536-1)	Nessus	SuSE Local Security Checks	medium
83611	SUSE SLES11 Security Update : kernel (SUSE-SU-2014:0287-1)	Nessus	SuSE Local Security Checks	high
83603	SUSE SLES10 Security Update : kernel (SUSE-SU-2013:1832-1)	Nessus	SuSE Local Security Checks	high
76660	RHEL 6 : MRG (RHSA-2013:0829)	Nessus	Red Hat Local Security Checks	high
74878	openSUSE Security Update : kernel (openSUSE-SU-2013:1971-1)	Nessus	SuSE Local Security Checks	high
70222	Amazon Linux AMI : kernel (ALAS-2013-218)	Nessus	Amazon Linux Local Security Checks	high
69942	Oracle Linux 5 / 6 : Unbreakable Enterprise Kernel (ELSA-2013-2546)	Nessus	Oracle Linux Local Security Checks	high
69758	Amazon Linux AMI : kernel (ALAS-2013-200)	Nessus	Amazon Linux Local Security Checks	medium
68978	Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2013-2538)	Nessus	Oracle Linux Local Security Checks	high
68977	Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2013-2537)	Nessus	Oracle Linux Local Security Checks	medium
68954	SuSE 11.3 Security Update : Linux kernel (SAT Patch Numbers 7991 / 7992 / 7994)	Nessus	SuSE Local Security Checks	medium
68945	Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20130716)	Nessus	Scientific Linux Local Security Checks	high
68940	CentOS 6 : kernel (CESA-2013:1051)	Nessus	CentOS Local Security Checks	high
68921	RHEL 6 : kernel (RHSA-2013:1051)	Nessus	Red Hat Local Security Checks	high
68920	Oracle Linux 6 : kernel (ELSA-2013-1051)	Nessus	Oracle Linux Local Security Checks	high
68844	Oracle Linux 5 : kernel (ELSA-2013-1034)	Nessus	Oracle Linux Local Security Checks	medium
68843	Oracle Linux 5 : kernel (ELSA-2013-1034-1)	Nessus	Oracle Linux Local Security Checks	medium
67241	Scientific Linux Security Update : kernel on SL5.x i386/x86_64 (20130710)	Nessus	Scientific Linux Local Security Checks	medium
67235	CentOS 5 : kernel (CESA-2013:1034)	Nessus	CentOS Local Security Checks	medium
67219	RHEL 5 : kernel (RHSA-2013:1034)	Nessus	Red Hat Local Security Checks	medium
66975	Mandriva Linux Security Advisory : kernel (MDVSA-2013:176)	Nessus	Mandriva Local Security Checks	high
66912	SuSE 11.2 Security Update : Linux kernel (SAT Patch Numbers 7811 / 7813 / 7814)	Nessus	SuSE Local Security Checks	medium
66904	Ubuntu 12.10 : linux vulnerabilities (USN-1881-1)	Nessus	Ubuntu Local Security Checks	medium
66903	Ubuntu 12.04 LTS : linux-lts-quantal vulnerabilities (USN-1880-1)	Nessus	Ubuntu Local Security Checks	medium
66902	Ubuntu 12.04 LTS : linux vulnerabilities (USN-1878-1)	Nessus	Ubuntu Local Security Checks	medium
66901	Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1877-1)	Nessus	Ubuntu Local Security Checks	medium
66900	Ubuntu 10.04 LTS : linux vulnerabilities (USN-1876-1)	Nessus	Ubuntu Local Security Checks	medium
66590	Ubuntu 13.04 : linux vulnerabilities (USN-1837-1)	Nessus	Ubuntu Local Security Checks	medium
66486	Debian DSA-2669-1 : linux - privilege escalation/denial of service/information leak	Nessus	Debian Local Security Checks	high
66431	Debian DSA-2668-1 : linux-2.6 - privilege escalation/denial of service/information leak	Nessus	Debian Local Security Checks	medium
66310	Fedora 17 : kernel-3.8.11-100.fc17 (2013-6999)	Nessus	Fedora Local Security Checks	medium
66248	Fedora 18 : kernel-3.8.8-203.fc18 (2013-6537)	Nessus	Fedora Local Security Checks	medium

CVE-2013-3222

MEDIUM

Description

References

Details

Risk Information

CVSS v2.0

Vulnerable Software

Configuration 1

Tenable Plugins

medium

high

high

high

high

high

high

medium

high

medium

medium

high

high

high

high

medium

medium

medium

medium

medium

high

medium

medium

medium

medium

medium

medium

medium

high

medium

medium

medium