CVE-2013-3226

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2013-3226 at MITRE

Description

The sco_sock_recvmsg function in net/bluetooth/sco.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.

NVD CVSS v2 Base Score: 4.9 (AV:L/AC:L/Au:N/C:C/I:N/A:N)

SUSE information

SUSE Bugzilla entry: 816668

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 12.3
  • kernel-debug >= 3.7.10-1.24.1
  • kernel-debug-base >= 3.7.10-1.24.1
  • kernel-debug-base-debuginfo >= 3.7.10-1.24.1
  • kernel-debug-debuginfo >= 3.7.10-1.24.1
  • kernel-debug-debugsource >= 3.7.10-1.24.1
  • kernel-debug-devel >= 3.7.10-1.24.1
  • kernel-debug-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-default >= 3.7.10-1.24.1
  • kernel-default-base >= 3.7.10-1.24.1
  • kernel-default-base-debuginfo >= 3.7.10-1.24.1
  • kernel-default-debuginfo >= 3.7.10-1.24.1
  • kernel-default-debugsource >= 3.7.10-1.24.1
  • kernel-default-devel >= 3.7.10-1.24.1
  • kernel-default-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-desktop >= 3.7.10-1.24.1
  • kernel-desktop-base >= 3.7.10-1.24.1
  • kernel-desktop-base-debuginfo >= 3.7.10-1.24.1
  • kernel-desktop-debuginfo >= 3.7.10-1.24.1
  • kernel-desktop-debugsource >= 3.7.10-1.24.1
  • kernel-desktop-devel >= 3.7.10-1.24.1
  • kernel-desktop-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-devel >= 3.7.10-1.24.1
  • kernel-docs >= 3.7.10-1.24.1
  • kernel-ec2 >= 3.7.10-1.24.1
  • kernel-ec2-base >= 3.7.10-1.24.1
  • kernel-ec2-base-debuginfo >= 3.7.10-1.24.1
  • kernel-ec2-debuginfo >= 3.7.10-1.24.1
  • kernel-ec2-debugsource >= 3.7.10-1.24.1
  • kernel-ec2-devel >= 3.7.10-1.24.1
  • kernel-ec2-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-pae >= 3.7.10-1.24.1
  • kernel-pae-base >= 3.7.10-1.24.1
  • kernel-pae-base-debuginfo >= 3.7.10-1.24.1
  • kernel-pae-debuginfo >= 3.7.10-1.24.1
  • kernel-pae-debugsource >= 3.7.10-1.24.1
  • kernel-pae-devel >= 3.7.10-1.24.1
  • kernel-pae-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-source >= 3.7.10-1.24.1
  • kernel-source-vanilla >= 3.7.10-1.24.1
  • kernel-syms >= 3.7.10-1.24.1
  • kernel-trace >= 3.7.10-1.24.1
  • kernel-trace-base >= 3.7.10-1.24.1
  • kernel-trace-base-debuginfo >= 3.7.10-1.24.1
  • kernel-trace-debuginfo >= 3.7.10-1.24.1
  • kernel-trace-debugsource >= 3.7.10-1.24.1
  • kernel-trace-devel >= 3.7.10-1.24.1
  • kernel-trace-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-vanilla >= 3.7.10-1.24.1
  • kernel-vanilla-debuginfo >= 3.7.10-1.24.1
  • kernel-vanilla-debugsource >= 3.7.10-1.24.1
  • kernel-vanilla-devel >= 3.7.10-1.24.1
  • kernel-vanilla-devel-debuginfo >= 3.7.10-1.24.1
  • kernel-xen >= 3.7.10-1.24.1
  • kernel-xen-base >= 3.7.10-1.24.1
  • kernel-xen-base-debuginfo >= 3.7.10-1.24.1
  • kernel-xen-debuginfo >= 3.7.10-1.24.1
  • kernel-xen-debugsource >= 3.7.10-1.24.1
  • kernel-xen-devel >= 3.7.10-1.24.1
  • kernel-xen-devel-debuginfo >= 3.7.10-1.24.1
Patchnames:
openSUSE-2013-1034