Home

CVE-2013-1059

Description

net/ceph/auth_none.c in the Linux kernel through 3.10 allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via an auth_reply message that triggers an attempted build_request operation.

Risk Information

Base Score
9.8
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.137

Associated Vulnerability

VulnerabilityOS Platform
Linux hardware enablement kernel from Quantal (USN-1931-1) linux-image-3.5.0-39-generic_3.5.0-39.60~precise1_i386.debLinux
Linux hardware enablement kernel from Quantal (USN-1931-1) linux-image-3.5.0-39-generic_3.5.0-39.60~precise1_amd64.debLinux
Linux hardware enablement kernel from Raring (USN-1936-1) linux-image-3.8.0-29-generic_3.8.0-29.42~precise1_i386.debLinux
Linux hardware enablement kernel from Raring (USN-1936-1) linux-image-3.8.0-29-generic_3.8.0-29.42~precise1_amd64.debLinux
Linux kernel (USN-1941-1) linux-image-3.2.0-53-generic_3.2.0-53.81_i386.debLinux
Linux kernel (USN-1941-1) linux-image-3.2.0-53-generic_3.2.0-53.81_amd64.debLinux
Linux kernel (USN-1941-1) linux-image-3.2.0-53-virtual_3.2.0-53.81_i386.debLinux
Linux kernel (USN-1941-1) linux-image-3.2.0-53-virtual_3.2.0-53.81_amd64.debLinux
Linux kernel (USN-1941-1) linux-image-3.2.0-53-generic-pae_3.2.0-53.81_i386.debLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234