Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2013-4254

Опубликовано: 25 авг. 2013
Источник: nvd
CVSS2: 6.9
EPSS Низкий

Описание

The validate_event function in arch/arm/kernel/perf_event.c in the Linux kernel before 3.10.8 on the ARM platform allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by adding a hardware event to an event group led by a software event.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:arm64:*
Версия до 3.10.7 (включая)
cpe:2.3:o:linux:linux_kernel:3.10.0:*:*:*:*:*:arm64:*
cpe:2.3:o:linux:linux_kernel:3.10.1:*:*:*:*:*:arm64:*
cpe:2.3:o:linux:linux_kernel:3.10.2:*:*:*:*:*:arm64:*
cpe:2.3:o:linux:linux_kernel:3.10.3:*:*:*:*:*:arm64:*
cpe:2.3:o:linux:linux_kernel:3.10.4:*:*:*:*:*:arm64:*
cpe:2.3:o:linux:linux_kernel:3.10.5:*:*:*:*:*:arm64:*
cpe:2.3:o:linux:linux_kernel:3.10.6:*:*:*:*:*:arm64:*

EPSS

Процентиль: 18%
0.00057
Низкий

6.9 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

ubuntu логотип

CVE-2013-4254

ubuntu
больше 12 лет назад

The validate_event function in arch/arm/kernel/perf_event.c in the Linux kernel before 3.10.8 on the ARM platform allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by adding a hardware event to an event group led by a software event.

redhat логотип

CVE-2013-4254

redhat
больше 12 лет назад

The validate_event function in arch/arm/kernel/perf_event.c in the Linux kernel before 3.10.8 on the ARM platform allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by adding a hardware event to an event group led by a software event.

debian логотип

CVE-2013-4254

debian
больше 12 лет назад

The validate_event function in arch/arm/kernel/perf_event.c in the Lin ...

github логотип

GHSA-4w76-hr8w-36w7

github
больше 3 лет назад

The validate_event function in arch/arm/kernel/perf_event.c in the Linux kernel before 3.10.8 on the ARM platform allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by adding a hardware event to an event group led by a software event.

EPSS

Процентиль: 18%
0.00057
Низкий

6.9 Medium

CVSS2

Дефекты

CWE-20