PT-2013-1102 · Linux+1 · Linux Kernel+1

Mathias Krause

Published

2013-02-18

Updated

2017-11-29

CVE-2013-3076

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.9-rc8

Description The issue concerns the crypto API in the Linux kernel, where certain length variables are not properly initialized. This allows local users to obtain sensitive information from the kernel stack memory by using a specially crafted recvmsg or recvfrom system call. The problem is related to the hash recvmsg function in crypto/algif hash.c and the skcipher recvmsg function in crypto/algif skcipher.c.

Recommendations For Linux kernel versions prior to 3.9-rc8, consider updating to a version that includes the necessary fixes to prevent sensitive information disclosure. As a temporary workaround, restrict access to the recvmsg and recvfrom system calls to minimize the risk of exploitation. Additionally, consider disabling the hash recvmsg and skcipher recvmsg functions until a patch is available.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

BDU:2015-03064

CVE-2013-3076

DSA-2669-1

RHSA-2013:0829

SUSE-RU-2015:0621-1

SUSE-SU-2015:0481-1

SUSE-SU-2015:0581-1

SUSE-SU-2015:1174-1

USN-1837-1

USN-1849-1

USN-1878-1

USN-1879-1

USN-1880-1

USN-1881-1

USN-1882-1

USN-1883-1

Affected Products

Linux Kernel

Suse

PT-2013-1102 · Linux+1 · Linux Kernel+1

CVE-2013-3076

Weakness Enumeration

Related Identifiers

Affected Products

References · 47