Linux · Linux Kernel · CVE-2013-4129
**Name of the Vulnerable Software and Affected Versions**
Linux kernel versions prior to 3.10.3
**Description**
The issue is related to the bridge multicast implementation in the Linux kernel, which does not properly check if a certain timer is armed before modifying its timeout value. This can be exploited by local users to cause a denial of service, resulting in a system crash, particularly when shutting down a KVM virtual machine. The problem is associated with the net/bridge/br mdb.c and net/bridge/br multicast.c files.
**Recommendations**
For Linux kernel versions prior to 3.10.3, update to version 3.10.3 or later to resolve the issue.