CVE-2013-2852

Опубликовано: 07 июн. 2013

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.9

Описание

Format string vulnerability in the b43_request_firmware function in drivers/net/wireless/b43/main.c in the Broadcom B43 wireless driver in the Linux kernel through 3.9.4 allows local users to gain privileges by leveraging root access and including format string specifiers in an fwpostfix modprobe parameter, leading to improper construction of an error message.

Релиз	Статус	Примечание
devel	not-affected	4.10.0-19.21
esm-infra-legacy/trusty	not-affected	3.11.0-12.19
esm-infra/xenial	not-affected	4.2.0-16.19
lucid	released	2.6.32-49.111
precise	released	3.2.0-51.77
precise/esm	not-affected	3.2.0-51.77
quantal	released	3.5.0-37.58
raring	released	3.8.0-27.40
saucy	not-affected	3.9.0-7.15
trusty	not-affected	3.11.0-12.19

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	released	3.2.0-1623.34
precise/esm	DNE	precise was released [3.2.0-1623.34]
quantal	released	3.5.0-1618.26
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	not-affected	4.4.0-1002.2
esm-infra/xenial	not-affected	4.4.0-1001.10
precise	DNE
precise/esm	DNE
trusty	not-affected	4.4.0-1002.2
trusty/esm	not-affected	4.4.0-1002.2
upstream	released	3.10~rc6
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	released	2.6.32-354.67
precise	DNE
precise/esm	DNE
quantal	DNE
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was ignored [end of life, was needed]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	DNE
trusty	ignored	end of standard support, was needed
trusty/esm	ignored	end of life, was needed

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	ignored	end of life
precise	DNE
precise/esm	DNE
quantal	DNE
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.10~rc6
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	not-affected	4.4.0-1003.3

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was ignored [end of life, was needed]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support, was needed
trusty/esm	ignored	end of life, was needed

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [abandoned]]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [abandoned]
upstream	released	3.10~rc6

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/xenial	not-affected	4.8.0-36.36~16.04.1
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.10~rc6
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/xenial	not-affected	4.8.0-36.36~16.04.1
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.10~rc6
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
quantal	ignored	end of life
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
quantal	ignored	end of life
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
quantal	ignored	end of life
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	ignored	end of life
precise	DNE
precise/esm	DNE
quantal	DNE
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	released	3.5.0-37.58~precise1
precise/esm	DNE	precise was released [3.5.0-37.58~precise1]
quantal	DNE
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	released	3.8.0-29.42~precise1
precise/esm	DNE	precise was released [3.8.0-29.42~precise1]
quantal	DNE
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	not-affected	3.13.0-24.46~precise1
precise/esm	not-affected	3.13.0-24.46~precise1
saucy	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.10~rc6
utopic	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.16.0-25.33~14.04.2]]
lucid	DNE
precise	DNE
precise/esm	DNE
trusty	not-affected	3.16.0-25.33~14.04.2
trusty/esm	DNE	trusty was not-affected [3.16.0-25.33~14.04.2]
upstream	released	3.10~rc6
utopic	DNE
vivid	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.19.0-18.18~14.04.1]]
lucid	DNE
precise	DNE
precise/esm	DNE
trusty	not-affected	3.19.0-18.18~14.04.1
trusty/esm	DNE	trusty was not-affected [3.19.0-18.18~14.04.1]
upstream	released	3.10~rc6
utopic	DNE
vivid	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [4.2.0-18.22~14.04.1]]
precise	DNE
precise/esm	DNE
trusty	not-affected	4.2.0-18.22~14.04.1
trusty/esm	DNE	trusty was not-affected [4.2.0-18.22~14.04.1]
upstream	released	3.10~rc6
vivid	DNE
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	not-affected	4.4.0-13.29~14.04.1
precise	DNE
precise/esm	DNE
trusty	not-affected	4.4.0-13.29~14.04.1
trusty/esm	not-affected	4.4.0-13.29~14.04.1
upstream	released	3.10~rc6
vivid	DNE
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [abandoned]]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [abandoned]
upstream	released	3.10~rc6

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was ignored [end of life, was needed]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support, was needed
trusty/esm	ignored	end of life, was needed

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was ignored [end of life, was needed]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support, was needed
trusty/esm	ignored	end of life, was needed
upstream	released	3.10~rc6

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	ignored	end of life
precise	DNE
precise/esm	DNE
quantal	DNE
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	ignored	end of life
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
quantal	ignored	end of life
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	not-affected	4.10.0-1004.6
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.10~rc6
vivid	DNE
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	released	4.2.0-1014.21

Показывать по

Релиз	Статус	Примечание
devel	not-affected	4.4.0-1050.54
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.10~rc6
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	released	3.2.0-1436.55
precise/esm	DNE	precise was released [3.2.0-1436.55]
quantal	released	3.5.0-229.42
raring	released	3.5.0-229.42
saucy	not-affected	3.5.0-229.42
trusty	DNE
trusty/esm	DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 49%

0.00255

Низкий

6.9 Medium

CVSS2

Связанные уязвимости

CVE-2013-2852

redhat

около 12 лет назад

CVE-2013-2852

nvd

около 12 лет назад

CVE-2013-2852

debian

около 12 лет назад

Format string vulnerability in the b43_request_firmware function in dr ...

GHSA-jrj6-vfj7-prcf

github

около 3 лет назад

ELSA-2013-2537

oracle-oval

почти 12 лет назад

ELSA-2013-2537: unbreakable enterprise kernel security update (MODERATE)

EPSS

Процентиль: 49%

0.00255

Низкий

6.9 Medium

CVSS2

CVE-2013-2852

Описание

Пакет linux

Пакет linux-armadaxp

Пакет linux-aws

Пакет linux-ec2

Пакет linux-flo

Пакет linux-fsl-imx51

Пакет linux-gke

Пакет linux-goldfish

Пакет linux-grouper

Пакет linux-hwe

Пакет linux-hwe-edge

Пакет linux-linaro-omap

Пакет linux-linaro-shared

Пакет linux-linaro-vexpress

Пакет linux-lts-backport-maverick

Пакет linux-lts-quantal

Пакет linux-lts-raring

Пакет linux-lts-trusty

Пакет linux-lts-utopic

Пакет linux-lts-vivid

Пакет linux-lts-wily

Пакет linux-lts-xenial

Пакет linux-maguro

Пакет linux-mako

Пакет linux-manta

Пакет linux-mvl-dove

Пакет linux-qcm-msm

Пакет linux-raspi2

Пакет linux-snapdragon

Пакет linux-ti-omap4

Ссылки на источники

Связанные уязвимости