CVE-2013-7446

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 28-12-2015 12:59

Last modified: - 21-09-2022 08:44

Total changes: - 2

Description

Use-after-free vulnerability in net/unix/af_unix.c in the Linux kernel before 4.3.3 allows local users to bypass intended AF_UNIX socket permissions or cause a denial of service (panic) via crafted epoll_ctl calls.

Common Vulnerability Scoring System (CVSS)

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H

High

Attack complexity

Local

Attack vector

High

Availability

None

Confidentiality

Low

Integrity

Low

Privileges required

Unchanged

Scope

None

User interaction

5.3

Base score

1.0

4.2

Exploitability score

Impact score

Verification logic

Reference

https://forums.grsecurity.net/viewtopic.php?f=3&t=4150
https://github.com/torvalds/linux/commit/7d267278a9ece963d77eefec61630223fce08c6c
[netdev] 20150304 [PATCH net] af_unix: don't poll dead peers-Exploit
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=7d267278a9ece963d77eefec61630223fce08c6c
http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.3.3
[oss-security] 20151118 Re: CVE request - Linux kernel - Unix sockets use after free - peer_wait_queue prematurely freed-
[linux-kernel] 20140515 eventpoll __list_del_entry corruption (was: perf: use after free in perf_remove_from_context)-Exploit
[linux-kernel] 20150913 List corruption on epoll_ctl(EPOLL_CTL_DEL) an AF_UNIX socket-Exploit
https://bugzilla.redhat.com/show_bug.cgi?id=1282688
[linux-kernel] 20131014 Re: epoll oops.-Exploit
SUSE-SU-2016:1995-
SUSE-SU-2016:2000-
SUSE-SU-2016:2002-
SUSE-SU-2016:1961-
SUSE-SU-2016:2014-
SUSE-SU-2016:2006-
SUSE-SU-2016:2074-
SUSE-SU-2016:2007-
SUSE-SU-2016:2010-
openSUSE-SU-2016:1641-
SUSE-SU-2016:2001-
SUSE-SU-2016:1994-
SUSE-SU-2016:2003-
77638-
SUSE-SU-2016:2011-
SUSE-SU-2016:2005-
SUSE-SU-2016:2009-
SUSE-SU-2016:0757-
SUSE-SU-2016:0755-
SUSE-SU-2016:0746-
SUSE-SU-2016:0753-
SUSE-SU-2016:0750-
SUSE-SU-2016:0756-
SUSE-SU-2016:0754-
SUSE-SU-2016:0747-
SUSE-SU-2016:0745-
SUSE-SU-2016:0752-
SUSE-SU-2016:0911-
SUSE-SU-2016:1102-
SUSE-SU-2016:0749-
SUSE-SU-2016:0751-
USN-2889-1-
USN-2890-1-
USN-2889-2-
USN-2890-2-
USN-2887-1-
USN-2890-3-
USN-2887-2-
USN-2888-1-
USN-2886-1-
DSA-3426-
1034557-
https://groups.google.com/forum/#!topic/syzkaller/3twDUI4Cpm8

Keywords

CVE-2013-7446

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2013-7446

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures