ID |
CVE-2013-6382
|
Sažetak |
Multiple buffer underflows in the XFS implementation in the Linux kernel through 3.12.1 allow local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging the CAP_SYS_ADMIN capability for a (1) XFS_IOC_ATTRLIST_BY_HANDLE or (2) XFS_IOC_ATTRLIST_BY_HANDLE_32 ioctl call with a crafted length value, related to the xfs_attrlist_by_handle function in fs/xfs/xfs_ioctl.c and the xfs_compat_attrlist_by_handle function in fs/xfs/xfs_ioctl32.c. |
Reference |
|
CVSS |
Base: | 4.0 |
Impact: | 6.9 |
Exploitability: | 1.9 |
|
Pristup |
Vektor | Složenost | Autentikacija |
LOCAL |
HIGH |
NONE |
|
Impact |
Povjerljivost | Cjelovitost | Dostupnost |
NONE |
NONE |
COMPLETE |
|
CVSS vektor |
AV:L/AC:H/Au:N/C:N/I:N/A:C |
Zadnje važnije ažuriranje |
31-12-2016 - 02:59 |
Objavljeno |
27-11-2013 - 04:43 |