Wind River Support Network

HomeDefectsLIN5-13822
Fixed

LIN5-13822 : Security Advisory - linux - CVE-2013-1059

Created: Jul 15, 2013    Updated: Dec 19, 2017
Resolved Date: Sep 23, 2013
Previous ID: LIN3-17979
Found In Version: 5.0
Fix Version: 5.0.1.8
Severity: Severe
Applicable for: Wind River Linux 5
Component/s: Kernel

Description

net/ceph/auth_none.c in the Linux kernel through 3.10 allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via an auth_reply message that triggers an attempted build_request operation.Per: http://cwe.mitre.org/data/definitions/476.html

'CWE-476: NULL Pointer Dereference'

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1059

Workaround

Unknown

Steps to Reproduce

Unknown

Other Downloads


Live chat
Online