CVE-2013-4512
Published: 12 November 2013
Buffer overflow in the exitcode_proc_write function in arch/um/kernel/exitcode.c in the Linux kernel before 3.12 allows local users to cause a denial of service or possibly have unspecified other impact by leveraging root privileges for a write operation.
From the Ubuntu security team
A buffer overflow was discovered in exit function for the Linux kernel when used for User Mode Linux. A local user could exploit this flaw to cause a denial of service or possibly gain administrative privileges.
Priority
Low
Status
| Package | Release | Status |
|---|---|---|
|
linux Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Not vulnerable
(3.12.0-2.5)
|
|
|
Patches: Introduced by 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 Fixed by 201f99f170df14ba52ea4c52847779042b7a623b |
||
|
linux-armadaxp Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
| This package is not directly supported by the Ubuntu Security Team | ||
|
linux-ec2 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
|
linux-flo Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was ignored [was needed now end-of-life])
|
|
|
linux-fsl-imx51 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
|
linux-goldfish Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was ignored [was needed now end-of-life])
|
|
|
linux-grouper Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was ignored [CVE in User Mode Linux])
|
|
|
linux-linaro-omap Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
|
linux-linaro-shared Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
|
linux-linaro-vexpress Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
|
linux-lts-quantal Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
|
linux-lts-raring Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
|
linux-lts-saucy Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
|
linux-lts-trusty Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
|
linux-maguro Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was ignored [CVE in User Mode Linux])
|
|
|
linux-mako Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was ignored [was needed now end-of-life])
|
|
|
linux-manta Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
(trusty was ignored [was needed now end-of-life])
|
|
|
linux-mvl-dove Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
|
linux-qcm-msm Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|
|
linux-ti-omap4 Launchpad, Ubuntu, Debian |
Upstream |
Released
(3.12)
|
| Ubuntu 14.04 ESM (Trusty Tahr) |
Does not exist
|
|