CVE-2013-4513

Published: 12 November 2013

Buffer overflow in the oz_cdev_write function in drivers/staging/ozwpan/ozcdev.c in the Linux kernel before 3.12 allows local users to cause a denial of service or possibly have unspecified other impact via a crafted write operation.

From the Ubuntu security team

Nico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo Devices USB over WiFi devices. A local user could exploit this flaw to cause a denial of service or possibly unspecified impact.

Status

References

• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4513
• https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c2c65cd2e14ada6de44cb527e7f1990bede24e15
• https://ubuntu.com/security/notices/USN-2068-1
• https://ubuntu.com/security/notices/USN-2069-1
• https://ubuntu.com/security/notices/USN-2070-1
• https://ubuntu.com/security/notices/USN-2071-1
• https://ubuntu.com/security/notices/USN-2072-1
• https://ubuntu.com/security/notices/USN-2073-1
• https://ubuntu.com/security/notices/USN-2074-1
• https://ubuntu.com/security/notices/USN-2075-1
• https://ubuntu.com/security/notices/USN-2076-1
• NVD
• Launchpad
• Debian

Bugs

• https://launchpad.net/bugs/1249272