CVE-2013-6282

Опубликовано: 20 нояб. 2013

Источник: ubuntu

Приоритет: medium

EPSS Средний

CVSS2: 7.2

CVSS3: 8.8

Описание

The (1) get_user and (2) put_user API functions in the Linux kernel before 3.5.5 on the v6k and v7 ARM platforms do not validate certain addresses, which allows attackers to read or modify the contents of arbitrary kernel memory locations via a crafted application, as exploited in the wild against Android devices in October and November 2013.

Релиз	Статус	Примечание
devel	not-affected	4.10.0-19.21
esm-infra-legacy/trusty	not-affected	3.11.0-12.19
esm-infra/xenial	not-affected	4.2.0-16.19
lucid	ignored
precise	not-affected	arm only
precise/esm	not-affected	arm only
quantal	not-affected	3.5.0-17.26
raring	not-affected	3.7.0-0.5
saucy	not-affected	3.9.0-0.2
trusty	not-affected	3.11.0-12.19

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	released	3.2.0-1629.41
precise/esm	DNE	precise was released [3.2.0-1629.41]
quantal	not-affected	3.5.0-1603.5
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	not-affected	4.4.0-1002.2
esm-infra/xenial	not-affected	4.4.0-1001.10
precise	DNE
precise/esm	DNE
trusty	not-affected	4.4.0-1002.2
trusty/esm	not-affected	4.4.0-1002.2
upstream	released	3.6~rc6
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	ignored
precise	DNE
precise/esm	DNE
quantal	DNE
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was ignored [end of life, was needed]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	DNE
trusty	ignored	end of standard support, was needed
trusty/esm	ignored	end of life, was needed

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	ignored	end of life
precise	DNE
precise/esm	DNE
quantal	DNE
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.6~rc6
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	not-affected	4.4.0-1003.3

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was ignored [end of life, was needed]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support, was needed
trusty/esm	ignored	end of life, was needed

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [abandoned]]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [abandoned]
upstream	released	3.6~rc6

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/xenial	not-affected	4.8.0-36.36~16.04.1
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.6~rc6
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/xenial	not-affected	4.8.0-36.36~16.04.1
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.6~rc6
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
quantal	ignored	end of life
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
quantal	ignored	end of life
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
quantal	ignored	end of life
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	not-affected	3.5.0-18.29~precise1
precise/esm	DNE	precise was not-affected [3.5.0-18.29~precise1]
quantal	DNE
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	not-affected	3.8.0-19.30~precise1
precise/esm	DNE	precise was not-affected [3.8.0-19.30~precise1]
quantal	DNE
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	not-affected	3.11.0-13.20~precise2
precise/esm	DNE	precise was not-affected [3.11.0-13.20~precise2]
quantal	DNE
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	not-affected	3.13.0-24.46~precise1
precise/esm	not-affected	3.13.0-24.46~precise1
saucy	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.6~rc6
utopic	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.16.0-25.33~14.04.2]]
lucid	DNE
precise	DNE
precise/esm	DNE
trusty	not-affected	3.16.0-25.33~14.04.2
trusty/esm	DNE	trusty was not-affected [3.16.0-25.33~14.04.2]
upstream	released	3.6~rc6
utopic	DNE
vivid	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.19.0-18.18~14.04.1]]
lucid	DNE
precise	DNE
precise/esm	DNE
trusty	not-affected	3.19.0-18.18~14.04.1
trusty/esm	DNE	trusty was not-affected [3.19.0-18.18~14.04.1]
upstream	released	3.6~rc6
utopic	DNE
vivid	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [4.2.0-18.22~14.04.1]]
precise	DNE
precise/esm	DNE
trusty	not-affected	4.2.0-18.22~14.04.1
trusty/esm	DNE	trusty was not-affected [4.2.0-18.22~14.04.1]
upstream	released	3.6~rc6
vivid	DNE
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	not-affected	4.4.0-13.29~14.04.1
precise	DNE
precise/esm	DNE
trusty	not-affected	4.4.0-13.29~14.04.1
trusty/esm	not-affected	4.4.0-13.29~14.04.1
upstream	released	3.6~rc6
vivid	DNE
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was ignored [abandoned]]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was ignored [abandoned]
upstream	released	3.6~rc6

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-apps/xenial	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was ignored [end of life, was needed]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	ignored	end of standard support, was needed
trusty/esm	ignored	end of life, was needed

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [3.4.0-5.22]]
lucid	DNE
precise	DNE
precise/esm	DNE
quantal	DNE
saucy	ignored
trusty	not-affected	3.4.0-5.22
trusty/esm	DNE	trusty was not-affected [3.4.0-5.22]
upstream	released	3.6~rc6

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	ignored	end of life
precise	DNE
precise/esm	DNE
quantal	DNE
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	ignored	end of life
precise	ignored	end of life
precise/esm	DNE	precise was ignored [abandoned]
quantal	ignored	end of life
raring	DNE
saucy	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
devel	not-affected	4.10.0-1004.6
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.6~rc6
vivid	DNE
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	released	4.2.0-1014.21

Показывать по

Релиз	Статус	Примечание
devel	not-affected	4.4.0-1050.54
esm-infra-legacy/trusty	DNE
precise	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	3.6~rc6
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	DNE

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
lucid	DNE
precise	released	3.2.0-1442.61
precise/esm	DNE	precise was released [3.2.0-1442.61]
quantal	not-affected	3.5.0-213.20
raring	not-affected	3.5.0-213.20
saucy	not-affected	3.5.0-223.34
trusty	DNE
trusty/esm	DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 99%

0.681

Средний

7.2 High

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2013-6282

CVSS3: 8.8

nvd

около 12 лет назад

CVE-2013-6282

CVSS3: 8.8

debian

около 12 лет назад

The (1) get_user and (2) put_user API functions in the Linux kernel be ...

GHSA-7p8v-5r94-xc7r

CVSS3: 8.8

github

больше 3 лет назад

EPSS

Процентиль: 99%

0.681

Средний

7.2 High

CVSS2

8.8 High

CVSS3

CVE-2013-6282

Описание

Пакет linux

Пакет linux-armadaxp

Пакет linux-aws

Пакет linux-ec2

Пакет linux-flo

Пакет linux-fsl-imx51

Пакет linux-gke

Пакет linux-goldfish

Пакет linux-grouper

Пакет linux-hwe

Пакет linux-hwe-edge

Пакет linux-linaro-omap

Пакет linux-linaro-shared

Пакет linux-linaro-vexpress

Пакет linux-lts-quantal

Пакет linux-lts-raring

Пакет linux-lts-saucy

Пакет linux-lts-trusty

Пакет linux-lts-utopic

Пакет linux-lts-vivid

Пакет linux-lts-wily

Пакет linux-lts-xenial

Пакет linux-maguro

Пакет linux-mako

Пакет linux-manta

Пакет linux-mvl-dove

Пакет linux-qcm-msm

Пакет linux-raspi2

Пакет linux-snapdragon

Пакет linux-ti-omap4

Ссылки на источники

Связанные уязвимости