CVE-2013-4247
- EPSS 3.64%
- Veröffentlicht 25.08.2013 03:27:32
- Zuletzt bearbeitet 29.04.2026 01:13:23
Off-by-one error in the build_unc_path_to_root function in fs/cifs/connect.c in the Linux kernel before 3.9.6 allows remote attackers to cause a denial of service (memory corruption and system crash) via a DFS share mount operation that triggers use ...
CVE-2013-4254
- EPSS 0.43%
- Veröffentlicht 25.08.2013 03:27:32
- Zuletzt bearbeitet 29.04.2026 01:13:23
The validate_event function in arch/arm/kernel/perf_event.c in the Linux kernel before 3.10.8 on the ARM platform allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by adding a hardware even...
CVE-2013-4127
- EPSS 0.45%
- Veröffentlicht 29.07.2013 13:59:56
- Zuletzt bearbeitet 29.04.2026 01:13:23
Use-after-free vulnerability in the vhost_net_set_backend function in drivers/vhost/net.c in the Linux kernel through 3.10.3 allows local users to cause a denial of service (OOPS and system crash) via vectors involving powering on a virtual machine.
CVE-2013-4162
- EPSS 0.42%
- Veröffentlicht 29.07.2013 13:59:56
- Zuletzt bearbeitet 29.04.2026 01:13:23
The udp_v6_push_pending_frames function in net/ipv6/udp.c in the IPv6 implementation in the Linux kernel through 3.10.3 makes an incorrect function call for pending data, which allows local users to cause a denial of service (BUG and system crash) vi...
CVE-2013-4163
- EPSS 0.52%
- Veröffentlicht 29.07.2013 13:59:56
- Zuletzt bearbeitet 29.04.2026 01:13:23
The ip6_append_data_mtu function in net/ipv6/ip6_output.c in the IPv6 implementation in the Linux kernel through 3.10.3 does not properly maintain information about whether the IPV6_MTU setsockopt option had been specified, which allows local users t...
CVE-2013-4125
- EPSS 4.67%
- Veröffentlicht 15.07.2013 20:55:03
- Zuletzt bearbeitet 29.04.2026 01:13:23
The fib6_add_rt2node function in net/ipv6/ip6_fib.c in the IPv6 stack in the Linux kernel through 3.10.1 does not properly handle Router Advertisement (RA) messages in certain circumstances involving three routes that initially qualified for membersh...
CVE-2013-1059
- EPSS 4.55%
- Veröffentlicht 08.07.2013 17:55:01
- Zuletzt bearbeitet 29.04.2026 01:13:23
net/ceph/auth_none.c in the Linux kernel through 3.10 allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via an auth_reply message that triggers an attempted buil...
CVE-2013-2206
- EPSS 4.71%
- Veröffentlicht 04.07.2013 21:55:01
- Zuletzt bearbeitet 29.04.2026 01:13:23
The sctp_sf_do_5_2_4_dupcook function in net/sctp/sm_statefuns.c in the SCTP implementation in the Linux kernel before 3.8.5 does not properly handle associations during the processing of a duplicate COOKIE ECHO chunk, which allows remote attackers t...
CVE-2013-2232
- EPSS 0.56%
- Veröffentlicht 04.07.2013 21:55:01
- Zuletzt bearbeitet 29.04.2026 01:13:23
The ip6_sk_dst_check function in net/ipv6/ip6_output.c in the Linux kernel before 3.10 allows local users to cause a denial of service (system crash) by using an AF_INET6 socket for a connection to an IPv4 interface.
CVE-2013-2234
- EPSS 0.55%
- Veröffentlicht 04.07.2013 21:55:01
- Zuletzt bearbeitet 29.04.2026 01:13:23
The (1) key_notify_sa_flush and (2) key_notify_policy_flush functions in net/key/af_key.c in the Linux kernel before 3.10 do not initialize certain structure members, which allows local users to obtain sensitive information from kernel heap memory by...