Novell Home

CVE-2013-2548

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2013-2548 at MITRE

Description

The crypto_report_one function in crypto/crypto_user.c in the report API in the crypto user configuration API in the Linux kernel through 3.8.2 uses an incorrect length value during a copy operation, which allows local users to obtain sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability.

NVD CVSS v2 Base Score: 2.1 (AV:L/AC:L/Au:N/C:P/I:N/A:N)

SUSE information

SUSE Bugzilla entry: 809906

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 12.3
  • kernel-debug >= 3.7.10-1.24.1
  • kernel-debug-base >= 3.7.10-1.24.1
  • kernel-debug-base-debuginfo >= 3.7.10-1.24.1
  • kernel-debug-debuginfo >= 3.7.10-1.24.1
  • kernel-debug-debugsource >= 3.7.10-1.24.1
  • kernel-debug-devel >= 3.7.10-1.24.1
  • kernel-debug-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-default >= 3.7.10-1.24.1
  • kernel-default-base >= 3.7.10-1.24.1
  • kernel-default-base-debuginfo >= 3.7.10-1.24.1
  • kernel-default-debuginfo >= 3.7.10-1.24.1
  • kernel-default-debugsource >= 3.7.10-1.24.1
  • kernel-default-devel >= 3.7.10-1.24.1
  • kernel-default-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-desktop >= 3.7.10-1.24.1
  • kernel-desktop-base >= 3.7.10-1.24.1
  • kernel-desktop-base-debuginfo >= 3.7.10-1.24.1
  • kernel-desktop-debuginfo >= 3.7.10-1.24.1
  • kernel-desktop-debugsource >= 3.7.10-1.24.1
  • kernel-desktop-devel >= 3.7.10-1.24.1
  • kernel-desktop-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-devel >= 3.7.10-1.24.1
  • kernel-docs >= 3.7.10-1.24.1
  • kernel-ec2 >= 3.7.10-1.24.1
  • kernel-ec2-base >= 3.7.10-1.24.1
  • kernel-ec2-base-debuginfo >= 3.7.10-1.24.1
  • kernel-ec2-debuginfo >= 3.7.10-1.24.1
  • kernel-ec2-debugsource >= 3.7.10-1.24.1
  • kernel-ec2-devel >= 3.7.10-1.24.1
  • kernel-ec2-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-pae >= 3.7.10-1.24.1
  • kernel-pae-base >= 3.7.10-1.24.1
  • kernel-pae-base-debuginfo >= 3.7.10-1.24.1
  • kernel-pae-debuginfo >= 3.7.10-1.24.1
  • kernel-pae-debugsource >= 3.7.10-1.24.1
  • kernel-pae-devel >= 3.7.10-1.24.1
  • kernel-pae-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-source >= 3.7.10-1.24.1
  • kernel-source-vanilla >= 3.7.10-1.24.1
  • kernel-syms >= 3.7.10-1.24.1
  • kernel-trace >= 3.7.10-1.24.1
  • kernel-trace-base >= 3.7.10-1.24.1
  • kernel-trace-base-debuginfo >= 3.7.10-1.24.1
  • kernel-trace-debuginfo >= 3.7.10-1.24.1
  • kernel-trace-debugsource >= 3.7.10-1.24.1
  • kernel-trace-devel >= 3.7.10-1.24.1
  • kernel-trace-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-vanilla >= 3.7.10-1.24.1
  • kernel-vanilla-debuginfo >= 3.7.10-1.24.1
  • kernel-vanilla-debugsource >= 3.7.10-1.24.1
  • kernel-vanilla-devel >= 3.7.10-1.24.1
  • kernel-vanilla-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-xen >= 3.7.10-1.24.1
  • kernel-xen-base >= 3.7.10-1.24.1
  • kernel-xen-base-debuginfo >= 3.7.10-1.24.1
  • kernel-xen-debuginfo >= 3.7.10-1.24.1
  • kernel-xen-debugsource >= 3.7.10-1.24.1
  • kernel-xen-devel >= 3.7.10-1.24.1
  • kernel-xen-devel-debuginfo >= 3.7.10-1.24.1
Patchnames:
openSUSE-2013-1034

© 2015 Novell