7.2

CVE-2013-3301

Exploit
The ftrace implementation in the Linux kernel before 3.8.8 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by leveraging the CAP_SYS_ADMIN capability for write access to the (1) set_ftrace_pid or (2) set_graph_function file, and then making an lseek system call.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 3.1 < 3.2.44
LinuxLinux Kernel Version >= 3.3 < 3.4.49
LinuxLinux Kernel Version >= 3.5 < 3.8.8
RedhatEnterprise Linux Version6.0
RedhatEnterprise Mrg Version2.0
SuseLinux Enterprise Desktop Version11 Updatesp3
SuseLinux Enterprise Server Version11 Updatesp3 SwPlatform-
SuseLinux Enterprise Server Version11 Updatesp3 Editionvmware
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.99% 0.578
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.opensuse.org/opensuse-security-announce/2013-09/msg00003.html
Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2013-12/msg00129.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-1051.html
Third Party Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6a76f8c0ab19f215af2a3442870eeb5f0e81998d
Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.8
Third Party Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2013/04/15/1
Mailing List
http://www.ubuntu.com/usn/USN-1834-1
Third Party Advisory
VDB Entry
http://www.ubuntu.com/usn/USN-1835-1
Third Party Advisory
http://www.ubuntu.com/usn/USN-1836-1
Third Party Advisory
http://www.ubuntu.com/usn/USN-1838-1
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=952197
Third Party Advisory
Issue Tracking
https://github.com/torvalds/linux/commit/6a76f8c0ab19f215af2a3442870eeb5f0e81998d
Exploit