PT-2013-3607 · Linux+2 · Linux Kernel+2

Prasad Pandit

Publicado

2013-07-04

Atualizado

2023-02-13

CVE-2013-2224

CVSS v2.0

6.9

Média

Vetor

AV:L/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Red Hat Enterprise Linux (RHEL) 6 with Linux kernel 2.6.32

Description The issue allows local users to cause a denial of service, resulting in an invalid free operation and system crash, or possibly gain privileges. This is achieved via a sendmsg system call with the IP RETOPTS option.

Recommendations For Red Hat Enterprise Linux (RHEL) 6 with Linux kernel 2.6.32, consider applying the correct patch to resolve the issue, as the existing patch is incorrect and introduces this problem.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CESA-2013_1173

CVE-2013-2224

RHSA-2013:1166

RHSA-2013:1173

RHSA-2013:1195

RHSA-2013:1450

RHSA-2013_1166

RHSA-2013_1173

Produtos afetados

Centos

Linux Kernel

Red Hat

PT-2013-3607 · Linux+2 · Linux Kernel+2

CVE-2013-2224

Identificadores relacionados

Produtos afetados

Referências · 42