Published: 22/03/2013 Updated: 13/02/2023

CVSS v2 Base Score: 6.2 | Impact Score: 10 | Exploitability Score: 1.9

VMScore: 553

Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C

net/dccp/ccid.h in the Linux kernel prior to 3.5.4 allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by leveraging the CAP_NET_ADMIN capability for a certain (1) sender or (2) receiver getsockopt call.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 3.5.2
linux linux kernel
linux linux kernel 3.5.1

Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix multiple security issues and several bugsare now available for Red Hat Enterprise Linux 6The Red Hat Security Response Team has rated this update as havingimportant secur ...

The system could be made to run programs as an administrator ...

Several security issues were fixed in the kernel ...

The system could be made to run actions or potentially programs as an administrator ...

The system could be made to crash under certain conditions ...

Several security issues were fixed in the kernel ...

The system could be made to perform privileged actions as an administrator ...

NVD-CWE-Other https://bugzilla.redhat.com/show_bug.cgi?id=919164 http://www.openwall.com/lists/oss-security/2013/03/07/2 https://github.com/torvalds/linux/commit/276bdb82dedb290511467a5a4fdbe9f0b52dce6f http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.5.4 http://rhn.redhat.com/errata/RHSA-2013-0744.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=276bdb82dedb290511467a5a4fdbe9f0b52dce6f https://access.redhat.com/errata/RHSA-2013:0744 https://nvd.nist.gov https://usn.ubuntu.com/1653-1/

CVE-2013-1827

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect