Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveRedhatCVE-2012-2745
HistoryAug 09, 2012 - 10:29 a.m.

CVE-2012-2745

2012-08-0910:29:47
CWE-119
redhat
web.nvd.nist.gov
53
cve-2012-2745
linux kernel
denial of service
panic
fork system call

CVSS2

4.7

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.6

Confidence

High

EPSS

0

Percentile

10.1%

JSON

The copy_creds function in kernel/cred.c in the Linux kernel before 3.3.2 provides an invalid replacement session keyring to a child process, which allows local users to cause a denial of service (panic) via a crafted application that uses the fork system call.

Affected configurations

Nvd
Node
linuxlinux_kernelRange3.3.1
OR
linuxlinux_kernelMatch3.3
OR
linuxlinux_kernelMatch3.3rc1
OR
linuxlinux_kernelMatch3.3rc2
OR
linuxlinux_kernelMatch3.3rc3
OR
linuxlinux_kernelMatch3.3rc4
OR
linuxlinux_kernelMatch3.3rc5
OR
linuxlinux_kernelMatch3.3rc6
OR
linuxlinux_kernelMatch3.3rc7
VendorProductVersionCPE
linuxlinux_kernel3.3cpe:/o:linux:linux_kernel:3.3:rc1::
linuxlinux_kernel3.3cpe:/o:linux:linux_kernel:3.3:rc7::
linuxlinux_kernel3.3cpe:/o:linux:linux_kernel:3.3:::
linuxlinux_kernel3.3cpe:/o:linux:linux_kernel:3.3:rc3::
linuxlinux_kernel3.3cpe:/o:linux:linux_kernel:3.3:rc5::
linuxlinux_kernel3.3cpe:/o:linux:linux_kernel:3.3:rc4::
linuxlinux_kernelcpe:/o:linux:linux_kernel::::
linuxlinux_kernel3.3cpe:/o:linux:linux_kernel:3.3:rc2::
linuxlinux_kernel3.3cpe:/o:linux:linux_kernel:3.3:rc6::

Related

nessus 16
ubuntu 9
cvelist 1
prion 1
openvas 23
ubuntucve 1
debiancve 1
nvd 1
oraclelinux 3
redhat 1
centos 1
securityvulns 2
suse 1
nessus
nessus
SuSE 11.2 Security Update : Linux kernel (SAT Patch Numbers 6923 / 6926 / 6931)
2013-01-25 00:00:00
Ubuntu 10.04 LTS : linux-ec2 vulnerability (USN-1597-1)
2012-10-05 00:00:00
Ubuntu 10.04 LTS : linux vulnerabilities (USN-1606-1)
2012-10-12 00:00:00
ubuntu
ubuntu
Linux kernel (EC2) vulnerability
2012-10-05 00:00:00
Linux kernel vulnerabilities
2012-10-11 00:00:00
Linux kernel (Oneiric backport) vulnerabilities
2012-05-30 00:00:00
cvelist
cvelist
CVE-2012-2745
2012-08-09 10:00:00
prion
prion
Design/Logic Flaw
2012-08-09 10:29:00
openvas
openvas
Ubuntu: Security Advisory (USN-1597-1)
2012-10-05 00:00:00
Ubuntu Update for linux-ec2 USN-1597-1
2012-10-05 00:00:00
CentOS Update for kernel CESA-2012:1064 centos6
2012-07-30 00:00:00
ubuntucve
ubuntucve
CVE-2012-2745
2012-08-09 00:00:00
debiancve
debiancve
CVE-2012-2745
2012-08-09 10:29:47
nvd
nvd
CVE-2012-2745
2012-08-09 10:29:47
oraclelinux
oraclelinux
kernel security and bug fix update
2012-07-10 00:00:00
Unbreakable Enterprise kernel Security update
2012-07-17 00:00:00
Unbreakable Enterprise kernel Security update
2012-07-16 00:00:00
redhat
redhat
(RHSA-2012:1064) Important: kernel security and bug fix update
2012-07-10 00:00:00
centos
centos
kernel, perf, python security update
2012-07-10 17:40:45
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2012-09-18 00:00:00
[USN-1567-1] Linux kernel vulnerabilities
2012-09-18 00:00:00
suse
suse
kernel: security and bugfix update (important)
2013-03-05 18:04:24

CVSS2

4.7

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.6

Confidence

High

EPSS

0

Percentile

10.1%

JSON
Related for CVE-2012-2745
nessus16ubuntu9cvelist1prion1openvas23ubuntucve1debiancve1nvd1oraclelinux3redhat1centos1securityvulns2suse1