CVE-2013-4299

Name of the Vulnerable Software and Affected Versions Linux kernel versions through 3.11.6

Description The issue is related to an interpretation conflict in the Linux kernel, specifically in the drivers/md/dm-snap-persistent.c file. This conflict allows remote authenticated users to obtain sensitive information or modify data via a crafted mapping to a snapshot block device. The vulnerability can be exploited remotely and may lead to a breach of confidentiality, integrity, and availability of protected information. Additionally, local users may gain access to sensitive kernel memory due to an error in the device-mapper subsystem.

Recommendations For Linux kernel versions through 3.11.6, update to a version later than 3.11.6 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability for other affected packages.