CVE-2013-3231

Опубликовано: 22 апр. 2013

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 4.7

Описание

The llc_ui_recvmsg function in net/llc/af_llc.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.

Релиз	Статус	Примечание
devel	not-affected	4.10.0-19.21
esm-infra-legacy/trusty	not-affected	3.11.0-12.19
esm-infra/xenial	not-affected	4.2.0-16.19
hardy	ignored	end of life
lucid	released	2.6.32-48.110
oneiric	ignored	end of life
precise	released	3.2.0-48.74
precise/esm	not-affected	3.2.0-48.74
quantal	released	3.5.0-34.55
raring	released	3.8.0-22.33

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	DNE
lucid	DNE
oneiric	DNE
precise	released	3.2.0-1621.32
precise/esm	DNE	precise was released [3.2.0-1621.32]
quantal	released	3.5.0-1616.24
raring	DNE
saucy	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	not-affected	4.4.0-1002.2
esm-infra/xenial	not-affected	4.4.0-1001.10
precise	DNE
precise/esm	DNE
trusty	not-affected	4.4.0-1002.2
trusty/esm	not-affected	4.4.0-1002.2
upstream	released	3.9~rc7
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	DNE
lucid	released	2.6.32-353.66
oneiric	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
raring	DNE
saucy	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was ignored [end of life, was needed]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	DNE
trusty	ignored	end of standard support, was needed
trusty/esm	ignored	end of life, was needed

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	DNE
lucid	ignored	end of life
oneiric	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
raring	DNE
saucy	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.9~rc7
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	not-affected	4.4.0-1003.3

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was ignored [end of life, was needed]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support, was needed
trusty/esm	ignored	end of life, was needed

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [abandoned]]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [abandoned]
upstream	released	3.9~rc7

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/xenial	not-affected	4.8.0-36.36~16.04.1
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.9~rc7
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/xenial	not-affected	4.8.0-36.36~16.04.1
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.9~rc7
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	DNE
lucid	DNE
oneiric	ignored	end of life
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
quantal	ignored	end of life
raring	DNE
saucy	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	DNE
lucid	DNE
oneiric	ignored	end of life
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
quantal	ignored	end of life
raring	DNE
saucy	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	DNE
lucid	DNE
oneiric	ignored	end of life
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
quantal	ignored	end of life
raring	DNE
saucy	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	DNE
lucid	ignored	end of life
oneiric	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
raring	DNE
saucy	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	DNE
lucid	ignored	end of life
oneiric	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
raring	DNE
saucy	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	DNE
lucid	DNE
oneiric	DNE
precise	released	3.5.0-34.55~precise1
precise/esm	DNE	precise was released [3.5.0-34.55~precise1]
quantal	DNE
raring	DNE
saucy	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	DNE
lucid	DNE
oneiric	DNE
precise	released	3.8.0-22.33~precise1
precise/esm	DNE	precise was released [3.8.0-22.33~precise1]
quantal	DNE
raring	DNE
saucy	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	not-affected	3.13.0-24.46~precise1
precise/esm	not-affected	3.13.0-24.46~precise1
saucy	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.9~rc7
utopic	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.16.0-25.33~14.04.2]]
lucid	DNE
precise	DNE
precise/esm	DNE
trusty	not-affected	3.16.0-25.33~14.04.2
trusty/esm	DNE	trusty was not-affected [3.16.0-25.33~14.04.2]
upstream	released	3.9~rc7
utopic	DNE
vivid	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.19.0-18.18~14.04.1]]
lucid	DNE
precise	DNE
precise/esm	DNE
trusty	not-affected	3.19.0-18.18~14.04.1
trusty/esm	DNE	trusty was not-affected [3.19.0-18.18~14.04.1]
upstream	released	3.9~rc7
utopic	DNE
vivid	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [4.2.0-18.22~14.04.1]]
precise	DNE
precise/esm	DNE
trusty	not-affected	4.2.0-18.22~14.04.1
trusty/esm	DNE	trusty was not-affected [4.2.0-18.22~14.04.1]
upstream	released	3.9~rc7
vivid	DNE
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	not-affected	4.4.0-13.29~14.04.1
precise	DNE
precise/esm	DNE
trusty	not-affected	4.4.0-13.29~14.04.1
trusty/esm	not-affected	4.4.0-13.29~14.04.1
upstream	released	3.9~rc7
vivid	DNE
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [abandoned]]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [abandoned]
upstream	released	3.9~rc7

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was ignored [end of life, was needed]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support, was needed
trusty/esm	ignored	end of life, was needed

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was ignored [end of life, was needed]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support, was needed
trusty/esm	ignored	end of life, was needed
upstream	released	3.9~rc7

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	DNE
lucid	ignored	end of life
oneiric	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
raring	DNE
saucy	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	DNE
lucid	ignored	end of life
oneiric	ignored	end of life
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
quantal	ignored	end of life
raring	DNE
saucy	DNE

Показывать по

Релиз	Статус	Примечание
devel	not-affected	4.10.0-1004.6
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.9~rc7
vivid	DNE
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	released	4.2.0-1014.21

Показывать по

Релиз	Статус	Примечание
devel	not-affected	4.4.0-1050.54
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.9~rc7
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
hardy	DNE
lucid	DNE
oneiric	ignored	end of life
precise	released	3.2.0-1433.44
precise/esm	DNE	precise was released [3.2.0-1433.44]
quantal	released	3.5.0-226.39
raring	released	3.5.0-226.39
saucy	not-affected	3.5.0-226.39

Показывать по

Ссылки на источники

EPSS

Процентиль: 24%

0.00077

Низкий

4.7 Medium

CVSS2

Связанные уязвимости

CVE-2013-3231

redhat

около 12 лет назад

CVE-2013-3231

nvd

около 12 лет назад

CVE-2013-3231

debian

около 12 лет назад

The llc_ui_recvmsg function in net/llc/af_llc.c in the Linux kernel be ...

GHSA-x8jc-52cg-pxpq

github

около 3 лет назад

ELSA-2013-1034

oracle-oval

почти 12 лет назад

ELSA-2013-1034: kernel security and bug fix update (LOW)

EPSS

Процентиль: 24%

0.00077

Низкий

4.7 Medium

CVSS2

CVE-2013-3231

Описание

Пакет linux

Пакет linux-armadaxp

Пакет linux-aws

Пакет linux-ec2

Пакет linux-flo

Пакет linux-fsl-imx51

Пакет linux-gke

Пакет linux-goldfish

Пакет linux-grouper

Пакет linux-hwe

Пакет linux-hwe-edge

Пакет linux-linaro-omap

Пакет linux-linaro-shared

Пакет linux-linaro-vexpress

Пакет linux-lts-backport-maverick

Пакет linux-lts-backport-oneiric

Пакет linux-lts-quantal

Пакет linux-lts-raring

Пакет linux-lts-trusty

Пакет linux-lts-utopic

Пакет linux-lts-vivid

Пакет linux-lts-wily

Пакет linux-lts-xenial

Пакет linux-maguro

Пакет linux-mako

Пакет linux-manta

Пакет linux-mvl-dove

Пакет linux-qcm-msm

Пакет linux-raspi2

Пакет linux-snapdragon

Пакет linux-ti-omap4

Ссылки на источники

Связанные уязвимости