CVE-2013-6392

EPSS 0.11%
Veröffentlicht 30.11.2013 02:55:04
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

The genlock_dev_ioctl function in genlock.c in the Genlock driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted GENLOCK_IOC_EXPORT ioctl call.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Codeaurora ≫ Android-msm Version3.2.54

Codeaurora ≫ Android-msm Version3.4.72

Codeaurora ≫ Android-msm Version3.4.73

Codeaurora ≫ Android-msm Version3.4.74

Codeaurora ≫ Android-msm Version3.4.75

Codeaurora ≫ Android-msm Version3.4.76

Codeaurora ≫ Android-msm Version3.4.77

Codeaurora ≫ Android-msm Version3.4.78

Codeaurora ≫ Android-msm Version3.4.79

Codeaurora ≫ Android-msm Version3.10.22

Codeaurora ≫ Android-msm Version3.10.23

Codeaurora ≫ Android-msm Version3.10.24

Codeaurora ≫ Android-msm Version3.10.25

Codeaurora ≫ Android-msm Version3.10.26

Codeaurora ≫ Android-msm Version3.10.27

Codeaurora ≫ Android-msm Version3.10.28

Codeaurora ≫ Android-msm Version3.10.29

Codeaurora ≫ Android-msm Version3.12.3

Codeaurora ≫ Android-msm Version3.12.4

Codeaurora ≫ Android-msm Version3.12.5

Codeaurora ≫ Android-msm Version3.12.6

Codeaurora ≫ Android-msm Version3.12.7

Codeaurora ≫ Android-msm Version3.12.8

Codeaurora ≫ Android-msm Version3.12.9

Codeaurora ≫ Android-msm Version3.12.10

Codeaurora ≫ Android-msm Version3.13

Codeaurora ≫ Android-msm Version3.13 Updaterc1

Codeaurora ≫ Android-msm Version3.13 Updaterc2

Codeaurora ≫ Android-msm Version3.13 Updaterc3

Codeaurora ≫ Android-msm Version3.13 Updaterc4

Codeaurora ≫ Android-msm Version3.13 Updaterc5

Codeaurora ≫ Android-msm Version3.13 Updaterc6

Codeaurora ≫ Android-msm Version3.13 Updaterc7

Codeaurora ≫ Android-msm Version3.13 Updaterc8

Codeaurora ≫ Android-msm Version3.13.1

Codeaurora ≫ Android-msm Version3.13.2

Codeaurora ≫ Android-msm Version3.14 Updaterc1

Codeaurora ≫ Android-msm Version3.14 Updaterc2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.11%	0.302

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.9	3.9	6.9	AV:L/AC:L/Au:N/C:C/I:N/A:N

http://openwall.com/lists/oss-security/2013/11/25/4

https://www.codeaurora.org/cgit/quic/la/kernel/msm/commit/drivers/base/genlock.c?id=e3c43027bdb59f03eec7ead0a01c77e4bf801625&h=jb_3.2.3

Patch

https://nvd.nist.gov/vuln/detail/CVE-2013-6392

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-6392

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-6392

EUVD