Launchpad.net

CVE 2013-7263

The Linux kernel before 3.12.4 updates certain length values before ensuring that associated data structures have been initialized, which allows local users to obtain sensitive information from kernel stack memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call, related to net/ipv4/ping.c, net/ipv4/raw.c, net/ipv4/udp.c, net/ipv6/raw.c, and net/ipv6/udp.c.

Related bugs and status

CVE-2013-7263 (Candidate) is related to these bugs:

Bug #1267075: CVE-2013-7263

		In	Importance	Status
1267075	CVE-2013-7263	linux (Ubuntu)	Low	Invalid
1267075	CVE-2013-7263	linux-fsl-imx51 (Ubuntu)	Low	Invalid
1267075	CVE-2013-7263	linux-mvl-dove (Ubuntu)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-backport-maverick (Ubuntu)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-lts-backport-natty (Ubuntu)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-ti-omap4 (Ubuntu)	Low	Invalid
1267075	CVE-2013-7263	linux-ec2 (Ubuntu)	Low	Invalid
1267075	CVE-2013-7263	linux (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-ec2 (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-fsl-imx51 (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-backport-maverick (Ubuntu Trusty)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-lts-backport-natty (Ubuntu Trusty)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-mvl-dove (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-ti-omap4 (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-backport-maverick (Ubuntu Saucy)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-lts-backport-natty (Ubuntu Saucy)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-lts-backport-maverick (Ubuntu Raring)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-lts-backport-natty (Ubuntu Raring)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-lts-backport-maverick (Ubuntu Quantal)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-lts-backport-natty (Ubuntu Quantal)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux (Ubuntu Precise)	Low	Fix Released
1267075	CVE-2013-7263	linux-ec2 (Ubuntu Precise)	Low	Invalid
1267075	CVE-2013-7263	linux-fsl-imx51 (Ubuntu Precise)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-backport-maverick (Ubuntu Precise)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-lts-backport-natty (Ubuntu Precise)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-mvl-dove (Ubuntu Precise)	Low	Invalid
1267075	CVE-2013-7263	linux-ti-omap4 (Ubuntu Precise)	Low	Fix Released
1267075	CVE-2013-7263	linux-lts-backport-maverick (Ubuntu Lucid)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-lts-backport-natty (Ubuntu Lucid)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-armadaxp (Ubuntu)	Low	Invalid
1267075	CVE-2013-7263	linux-armadaxp (Ubuntu Precise)	Low	Fix Released
1267075	CVE-2013-7263	linux-armadaxp (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-saucy (Ubuntu)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-saucy (Ubuntu Precise)	Low	Fix Released
1267075	CVE-2013-7263	linux-lts-saucy (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-quantal (Ubuntu)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-quantal (Ubuntu Precise)	Low	Fix Released
1267075	CVE-2013-7263	linux-lts-quantal (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-raring (Ubuntu)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-raring (Ubuntu Precise)	Low	Fix Released
1267075	CVE-2013-7263	linux-lts-raring (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-trusty (Ubuntu)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-trusty (Ubuntu Precise)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-trusty (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-backport-maverick (Ubuntu Utopic)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-lts-backport-natty (Ubuntu Utopic)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux (Ubuntu Vivid)	Low	Invalid
1267075	CVE-2013-7263	linux-armadaxp (Ubuntu Vivid)	Low	Invalid
1267075	CVE-2013-7263	linux-ec2 (Ubuntu Vivid)	Low	Invalid
1267075	CVE-2013-7263	linux-fsl-imx51 (Ubuntu Vivid)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-backport-maverick (Ubuntu Vivid)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-lts-backport-natty (Ubuntu Vivid)	Undecided	Won't Fix
1267075	CVE-2013-7263	linux-lts-quantal (Ubuntu Vivid)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-raring (Ubuntu Vivid)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-saucy (Ubuntu Vivid)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-trusty (Ubuntu Vivid)	Low	Invalid
1267075	CVE-2013-7263	linux-mvl-dove (Ubuntu Vivid)	Low	Invalid
1267075	CVE-2013-7263	linux-ti-omap4 (Ubuntu Vivid)	Low	Invalid
1267075	CVE-2013-7263	linux-goldfish (Ubuntu)	Low	New
1267075	CVE-2013-7263	linux-goldfish (Ubuntu Precise)	Low	Invalid
1267075	CVE-2013-7263	linux-goldfish (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-goldfish (Ubuntu Vivid)	Low	Won't Fix
1267075	CVE-2013-7263	linux-flo (Ubuntu)	Low	New
1267075	CVE-2013-7263	linux-flo (Ubuntu Precise)	Low	Invalid
1267075	CVE-2013-7263	linux-flo (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-flo (Ubuntu Vivid)	Low	New
1267075	CVE-2013-7263	linux-mako (Ubuntu)	Low	New
1267075	CVE-2013-7263	linux-mako (Ubuntu Precise)	Low	Invalid
1267075	CVE-2013-7263	linux-mako (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-mako (Ubuntu Vivid)	Low	New
1267075	CVE-2013-7263	linux-lts-utopic (Ubuntu)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-utopic (Ubuntu Precise)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-utopic (Ubuntu Trusty)	Low	Invalid
1267075	CVE-2013-7263	linux-lts-utopic (Ubuntu Vivid)	Low	Invalid
1267075	CVE-2013-7263	linux-manta (Ubuntu)	Low	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2013-7263

Related bugs and status

Related bugs

References