CVE-2013-6123

Name of the Vulnerable Software and Affected Versions Linux kernel versions 3.x

Description The issue is related to multiple array index errors in the MSM camera driver, specifically in the msm cam server.c file. These errors can be exploited by attackers to gain privileges, leveraging access to camera device nodes. The affected functions include (1) msm ctrl cmd done, (2) msm ioctl server, and (3) msm server send ctrl.

Recommendations For Linux kernel version 3.x, consider restricting access to the camera device nodes to minimize the risk of exploitation. As a temporary workaround, disabling the msm ctrl cmd done, msm ioctl server, and msm server send ctrl functions may help mitigate the issue until a patch is available.