Home

CVE-2013-2929

Description

The Linux kernel before 3.12.2 does not properly use the get_dumpable function, which allows local users to bypass intended ptrace restrictions or obtain sensitive information from IA64 scratch registers via a crafted application, related to kernel/ptrace.c and arch/ia64/include/asm/processor.h.

Risk Information

Base Score
5.0
MODERATE
Vector
AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.01

Associated Vulnerability

VulnerabilityOS Platform
Linux hardware enablement kernel from Saucy (USN-2070-1) linux-image-3.11.0-15-generic_3.11.0-15.25~precise1_i386.debLinux
Linux hardware enablement kernel from Saucy (USN-2070-1) linux-image-3.11.0-15-generic_3.11.0-15.25~precise1_amd64.debLinux
Linux kernel (USN-2109-1) linux-image-3.2.0-59-generic_3.2.0-59.90_i386.debLinux
Linux kernel (USN-2109-1) linux-image-3.2.0-59-generic_3.2.0-59.90_amd64.debLinux
Linux kernel (USN-2109-1) linux-image-3.2.0-59-virtual_3.2.0-59.90_i386.debLinux
Linux kernel (USN-2109-1) linux-image-3.2.0-59-virtual_3.2.0-59.90_amd64.debLinux
Linux kernel (USN-2109-1) linux-image-3.2.0-59-generic-pae_3.2.0-59.90_i386.debLinux
Linux hardware enablement kernel from Quantal (USN-2111-1) linux-image-3.5.0-46-generic_3.5.0-46.70~precise1_i386.debLinux
Linux hardware enablement kernel from Quantal (USN-2111-1) linux-image-3.5.0-46-generic_3.5.0-46.70~precise1_amd64.debLinux
Linux hardware enablement kernel from Raring (USN-2112-1) linux-image-3.8.0-36-generic_3.8.0-36.52~precise1_i386.debLinux
Linux hardware enablement kernel from Raring (USN-2112-1) linux-image-3.8.0-36-generic_3.8.0-36.52~precise1_amd64.debLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-2.6.18-348.39.1.el5.i686.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-2.6.18-348.39.1.el5.x86_64.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-PAE-2.6.18-348.39.1.el5.i686.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-PAE-devel-2.6.18-348.39.1.el5.i686.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-debug-2.6.18-348.39.1.el5.i686.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-debug-2.6.18-348.39.1.el5.x86_64.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-debug-devel-2.6.18-348.39.1.el5.i686.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-debug-devel-2.6.18-348.39.1.el5.x86_64.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-devel-2.6.18-348.39.1.el5.i686.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-devel-2.6.18-348.39.1.el5.x86_64.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-doc-2.6.18-348.39.1.el5.noarch.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-headers-2.6.18-348.39.1.el5.i386.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-headers-2.6.18-348.39.1.el5.x86_64.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-xen-2.6.18-348.39.1.el5.i686.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-xen-2.6.18-348.39.1.el5.x86_64.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-xen-devel-2.6.18-348.39.1.el5.i686.rpmLinux
(RHSA-2018:1252) Important: kernel security and bug fix update kernel-xen-devel-2.6.18-348.39.1.el5.x86_64.rpmLinux
Dtrace-modules-3.8.13-26.1.1.el6uek update (ELSA-2014-3011) dtrace-modules-3.8.13-26.1.1.el6uek-0.4.2-3.el6.x86_64.rpmLinux
Dtrace-modules-3.8.13-35.el6uek update (ELSA-2014-3034) dtrace-modules-3.8.13-35.el6uek-0.4.3-4.el6.x86_64.rpmLinux
Dtrace-modules-headers update (ELSA-2014-3034) dtrace-modules-headers-0.4.3-4.el6.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234