Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2013-6382
HistoryNov 26, 2013 - 12:00 a.m.

CVE-2013-6382

2013-11-2600:00:00
ubuntu.com
ubuntu.com
35

CVSS2

4

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:N/I:N/A:C

EPSS

0

Percentile

10.1%

JSON

Multiple buffer underflows in the XFS implementation in the Linux kernel
through 3.12.1 allow local users to cause a denial of service (memory
corruption) or possibly have unspecified other impact by leveraging the
CAP_SYS_ADMIN capability for a (1) XFS_IOC_ATTRLIST_BY_HANDLE or (2)
XFS_IOC_ATTRLIST_BY_HANDLE_32 ioctl call with a crafted length value,
related to the xfs_attrlist_by_handle function in fs/xfs/xfs_ioctl.c and
the xfs_compat_attrlist_by_handle function in fs/xfs/xfs_ioctl32.c.

Bugs

Notes

Author Note
mdeslaur needs CAP_SYS_ADMIN
OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchlinux< 2.6.32-57.119UNKNOWN
ubuntu12.04noarchlinux< 3.2.0-59.90UNKNOWN
ubuntu12.10noarchlinux< 3.5.0-47.71UNKNOWN
ubuntu13.10noarchlinux< 3.11.0-17.31UNKNOWN
ubuntu12.04noarchlinux-armadaxp< 3.2.0-1630.42UNKNOWN
ubuntu12.10noarchlinux-armadaxp< 3.5.0-1628.37UNKNOWN
ubuntu10.04noarchlinux-ec2< 2.6.32-362.75UNKNOWN
ubuntu12.04noarchlinux-lts-quantal< 3.5.0-47.71~precise1UNKNOWN
ubuntu12.04noarchlinux-lts-raring< 3.8.0-38.56~precise1UNKNOWN
ubuntu12.04noarchlinux-lts-saucy< 3.11.0-17.31~precise1UNKNOWN
Rows per page:
1-10 of 131

Related

nvd 1
cve 1
cvelist 1
amazon 1
debiancve 1
openvas 77
prion 1
ubuntu 11
nessus 23
fedora 22
mageia 5
securityvulns 2
suse 7
debian 1
osv 1
nvd
nvd
CVE-2013-6382
2013-11-27 04:43:33
cve
cve
CVE-2013-6382
2013-11-27 04:43:33
cvelist
cvelist
CVE-2013-6382
2013-11-27 02:00:00
amazon
amazon
Low: kernel
2013-12-11 20:33:00
debiancve
debiancve
CVE-2013-6382
2013-11-27 04:43:33
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2013-258)
2015-09-08 00:00:00
Fedora Update for kernel FEDORA-2013-22531
2014-02-03 00:00:00
Ubuntu: Security Advisory (USN-2158-1)
2014-04-03 00:00:00
prion
prion
Buffer overflow
2013-11-27 04:43:00
ubuntu
ubuntu
Linux kernel (Raring HWE) vulnerabilities
2014-04-01 00:00:00
Linux kernel vulnerabilities
2014-03-05 00:00:00
Linux kernel (EC2) vulnerabilities
2014-03-06 00:00:00
nessus
nessus
Ubuntu 12.04 LTS : linux-lts-raring vulnerabilities (USN-2158-1)
2014-04-01 00:00:00
Fedora 20 : kernel-3.11.10-300.fc20 (2013-22531)
2013-12-05 00:00:00
Amazon Linux AMI : kernel (ALAS-2013-258)
2013-12-14 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: kernel-3.11.10-300.fc20
2013-12-04 16:51:18
[SECURITY] Fedora 19 Update: kernel-3.11.10-200.fc19
2013-12-07 06:58:32
[SECURITY] Fedora 19 Update: kernel-3.12.5-200.fc19
2013-12-21 02:15:01
mageia
mageia
Updated kernel-linus package fixes multiple vulnerabilities
2014-02-11 00:03:47
Updated kernel-rt packages fix security vulnerabilities
2013-12-18 03:27:56
Updated kernel-tmb packages fix security vulnerabilities
2013-12-18 03:24:11
securityvulns
securityvulns
[ MDVSA-2014:001 ] kernel
2014-01-14 00:00:00
Linux kernel security vulnerabilities
2014-03-31 00:00:00
suse
suse
Security update for Linux Kernel (important)
2014-06-18 01:04:38
Security update for Linux kernel (important)
2014-05-22 02:04:17
Security update for Linux kernel (important)
2014-07-17 04:04:21
debian
debian
[SECURITY] [DSA 2906-1] linux-2.6 security update
2014-04-25 00:12:10
osv
osv
linux-2.6 - several
2014-04-24 00:00:00

CVSS2

4

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:N/I:N/A:C

EPSS

0

Percentile

10.1%

JSON
Related for UB:CVE-2013-6382
nvd1cve1cvelist1amazon1debiancve1openvas77prion1ubuntu11nessus23fedora22mageia5securityvulns2suse7debian1osv1