PT-2013-1030 · Linux+2 · Linux Kernel+2

Fabian Yamaguchi

Publicado

2013-11-26

Atualizado

2023-02-13

CVE-2013-6380

CVSS v2.0

4.7

Média

Vetor

AV:L/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions through 3.12.1

Description The issue is related to the aac send raw srb function in the Linux kernel, which does not properly validate a certain size value. This can be exploited by local users with CAP SYS ADMIN privileges to cause a denial of service or possibly have other unspecified impacts via a crafted SRB command using the FSACTL SEND RAW SRB ioctl call. Local users can potentially elevate their privileges by exploiting the aacraid driver.

Recommendations For Linux kernel versions through 3.12.1, consider restricting access to the FSACTL SEND RAW SRB ioctl call to minimize the risk of exploitation. As a temporary workaround, consider disabling the aac send raw srb function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

ALT-PU-2013-1236

ALT-PU-2014-1422

ALT-PU-2014-1547

BDU:2014-00096

CVE-2013-6380

DSA-2906-1

MGASA-2013-0371

MGASA-2013-0372

MGASA-2013-0373

MGASA-2013-0374

MGASA-2013-0375

OPENSUSE-SU-2014_0204-1

SUSE-RU-2015:0621-1

SUSE-SU-2015:0481-1

SUSE-SU-2015:0581-1

SUSE-SU-2015:0736-1

SUSE-SU-2015:1174-1

SUSE-SU-2015:1376-1

USN-2070-1

USN-2075-1

USN-2109-1

USN-2110-1

USN-2111-1

USN-2114-1

USN-2115-1

USN-2116-1

USN-2128-1

USN-2129-1

USN-2136-1

Produtos afetados

Alt Linux

Linux Kernel

Suse

PT-2013-1030 · Linux+2 · Linux Kernel+2

CVE-2013-6380

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 80