PT-2013-1030 · Linux+2 · Linux Kernel+2

Fabian Yamaguchi

Published

2013-11-26

Updated

2023-02-13

CVE-2013-6380

CVSS v2.0

4.7

Medium

Vector

AV:L/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions through 3.12.1

Description The issue is related to the aac send raw srb function in the Linux kernel, which does not properly validate a certain size value. This can be exploited by local users with CAP SYS ADMIN privileges to cause a denial of service or possibly have other unspecified impacts via a crafted SRB command using the FSACTL SEND RAW SRB ioctl call. Local users can potentially elevate their privileges by exploiting the aacraid driver.

Recommendations For Linux kernel versions through 3.12.1, consider restricting access to the FSACTL SEND RAW SRB ioctl call to minimize the risk of exploitation. As a temporary workaround, consider disabling the aac send raw srb function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

ALT-PU-2013-1236

ALT-PU-2014-1422

ALT-PU-2014-1547

BDU:2014-00096

CVE-2013-6380

DSA-2906-1

MGASA-2013-0371

MGASA-2013-0372

MGASA-2013-0373

MGASA-2013-0374

MGASA-2013-0375

OPENSUSE-SU-2014_0204-1

SUSE-RU-2015:0621-1

SUSE-SU-2015:0481-1

SUSE-SU-2015:0581-1

SUSE-SU-2015:0736-1

SUSE-SU-2015:1174-1

SUSE-SU-2015:1376-1

USN-2070-1

USN-2075-1

USN-2109-1

USN-2110-1

USN-2111-1

USN-2114-1

USN-2115-1

USN-2116-1

USN-2128-1

USN-2129-1

USN-2136-1

Affected Products

Alt Linux

Linux Kernel

Suse

PT-2013-1030 · Linux+2 · Linux Kernel+2

CVE-2013-6380

Weakness Enumeration

Related Identifiers

Affected Products

References · 80