Upstream information

CVE-2013-6432 at MITRE

Description

The ping_recvmsg function in net/ipv4/ping.c in the Linux kernel before 3.12.4 does not properly interact with read system calls on ping sockets, which allows local users to cause a denial of service (NULL pointer dereference and system crash) by leveraging unspecified privileges to execute a crafted application.

SUSE information

CVSS v2 Scores
  National Vulnerability Database
Base Score 4.56
Vector AV:L/AC:L/Au:S/C:N/I:N/A:C
Access Vector Local
Access Complexity Low
Authentication Single
Confidentiality Impact None
Integrity Impact None
Availability Impact Complete
SUSE Bugzilla entry: 854175 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 13.1
  • kernel-debug >= 3.11.10-7.1
  • kernel-debug-base >= 3.11.10-7.1
  • kernel-debug-base-debuginfo >= 3.11.10-7.1
  • kernel-debug-debuginfo >= 3.11.10-7.1
  • kernel-debug-debugsource >= 3.11.10-7.1
  • kernel-debug-devel >= 3.11.10-7.1
  • kernel-debug-devel-debuginfo >= 3.11.10-7.1
  • kernel-default >= 3.11.10-7.1
  • kernel-default-base >= 3.11.10-7.1
  • kernel-default-base-debuginfo >= 3.11.10-7.1
  • kernel-default-debuginfo >= 3.11.10-7.1
  • kernel-default-debugsource >= 3.11.10-7.1
  • kernel-default-devel >= 3.11.10-7.1
  • kernel-default-devel-debuginfo >= 3.11.10-7.1
  • kernel-desktop >= 3.11.10-7.1
  • kernel-desktop-base >= 3.11.10-7.1
  • kernel-desktop-base-debuginfo >= 3.11.10-7.1
  • kernel-desktop-debuginfo >= 3.11.10-7.1
  • kernel-desktop-debugsource >= 3.11.10-7.1
  • kernel-desktop-devel >= 3.11.10-7.1
  • kernel-desktop-devel-debuginfo >= 3.11.10-7.1
  • kernel-devel >= 3.11.10-7.1
  • kernel-docs >= 3.11.10-7.3
  • kernel-ec2 >= 3.11.10-7.1
  • kernel-ec2-base >= 3.11.10-7.1
  • kernel-ec2-base-debuginfo >= 3.11.10-7.1
  • kernel-ec2-debuginfo >= 3.11.10-7.1
  • kernel-ec2-debugsource >= 3.11.10-7.1
  • kernel-ec2-devel >= 3.11.10-7.1
  • kernel-ec2-devel-debuginfo >= 3.11.10-7.1
  • kernel-pae >= 3.11.10-7.1
  • kernel-pae-base >= 3.11.10-7.1
  • kernel-pae-base-debuginfo >= 3.11.10-7.1
  • kernel-pae-debuginfo >= 3.11.10-7.1
  • kernel-pae-debugsource >= 3.11.10-7.1
  • kernel-pae-devel >= 3.11.10-7.1
  • kernel-pae-devel-debuginfo >= 3.11.10-7.1
  • kernel-source >= 3.11.10-7.1
  • kernel-source-vanilla >= 3.11.10-7.1
  • kernel-syms >= 3.11.10-7.1
  • kernel-trace >= 3.11.10-7.1
  • kernel-trace-base >= 3.11.10-7.1
  • kernel-trace-base-debuginfo >= 3.11.10-7.1
  • kernel-trace-debuginfo >= 3.11.10-7.1
  • kernel-trace-debugsource >= 3.11.10-7.1
  • kernel-trace-devel >= 3.11.10-7.1
  • kernel-trace-devel-debuginfo >= 3.11.10-7.1
  • kernel-vanilla >= 3.11.10-7.1
  • kernel-vanilla-debuginfo >= 3.11.10-7.1
  • kernel-vanilla-debugsource >= 3.11.10-7.1
  • kernel-vanilla-devel >= 3.11.10-7.1
  • kernel-vanilla-devel-debuginfo >= 3.11.10-7.1
  • kernel-xen >= 3.11.10-7.1
  • kernel-xen-base >= 3.11.10-7.1
  • kernel-xen-base-debuginfo >= 3.11.10-7.1
  • kernel-xen-debuginfo >= 3.11.10-7.1
  • kernel-xen-debugsource >= 3.11.10-7.1
  • kernel-xen-devel >= 3.11.10-7.1
  • kernel-xen-devel-debuginfo >= 3.11.10-7.1
Patchnames:
openSUSE-2014-114