PT-2013-6247 · Linux+2 · Linux Kernel+2

Evan Huus

Published

2013-11-05

Updated

2014-04-02

CVE-2013-7027

CVSS v2.0

6.1

Medium

Vector

AV:A/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.11.7

Description The issue is related to the ieee80211 radiotap iterator init function in the Linux kernel, which does not properly check for data outside of the header in a frame. This could potentially allow attackers to cause a denial of service through a buffer over-read by crafting a malicious header.

Recommendations For versions prior to 3.11.7, update to version 3.11.7 or later to resolve the issue.

Exploit

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALT-PU-2013-1053

ALT-PU-2014-1422

CVE-2013-7027

OPENSUSE-SU-2014_0204-1

SUSE-RU-2015:0621-1

SUSE-SU-2015:0481-1

SUSE-SU-2015:0581-1

SUSE-SU-2015:0652-1

SUSE-SU-2015:0736-1

SUSE-SU-2015:1174-1

SUSE-SU-2015:1376-1

USN-2042-1

USN-2049-1

USN-2066-1

USN-2067-1

USN-2068-1

USN-2069-1

USN-2071-1

USN-2072-1

USN-2073-1

USN-2074-1

USN-2076-1

USN-2128-1

USN-2129-1

Affected Products

Alt Linux

Linux Kernel

Suse

PT-2013-6247 · Linux+2 · Linux Kernel+2

CVE-2013-7027

Weakness Enumeration

Related Identifiers

Affected Products

References · 243