CVSS: 5.5EPSS: 0%CPEs: 284EXPL: 0CVE-2013-7263 – Kernel: net: leakage of uninitialized memory to user-space via recv syscalls
https://notcve.org/view.php?id=CVE-2013-7263
06 Jan 2014 — The Linux kernel before 3.12.4 updates certain length values before ensuring that associated data structures have been initialized, which allows local users to obtain sensitive information from kernel stack memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call, related to net/ipv4/ping.c, net/ipv4/raw.c, net/ipv4/udp.c, net/ipv6/raw.c, and net/ipv6/udp.c. El kernel Linux anterior a 3.12.4 actualiza cierto valor de longitud antes de asegurarse de si una estructura de datos asociada se ha inicia... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=bceaa90240b6019ed73b49965eac7d167610be69 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 284EXPL: 0CVE-2013-7264
https://notcve.org/view.php?id=CVE-2013-7264
06 Jan 2014 — The l2tp_ip_recvmsg function in net/l2tp/l2tp_ip.c in the Linux kernel before 3.12.4 updates a certain length value before ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information from kernel stack memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call. La función l2tp_ip_recvmsg en net/l2tp/l2tp_ip.c en el kernel Linux 3.12.4 actualiza ciertos valores de longitud antes de asegurarse de que una estructura de datos asociada ha sido... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=bceaa90240b6019ed73b49965eac7d167610be69 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 284EXPL: 0CVE-2013-7265 – Kernel: net: leakage of uninitialized memory to user-space via recv syscalls
https://notcve.org/view.php?id=CVE-2013-7265
06 Jan 2014 — The pn_recvmsg function in net/phonet/datagram.c in the Linux kernel before 3.12.4 updates a certain length value before ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information from kernel stack memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call. La función pn_recvmsg en net/phonet/datagram.c en el kernel Linux anteriores a 3.12.4 actualiza cierto valor de longitud antes de asegurarse de que una estructura de datos asociada h... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=bceaa90240b6019ed73b49965eac7d167610be69 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 284EXPL: 0CVE-2013-7266 – Kernel: net: information leak in recvmsg handler msg_name & msg_namelen logic
https://notcve.org/view.php?id=CVE-2013-7266
06 Jan 2014 — The mISDN_sock_recvmsg function in drivers/isdn/mISDN/socket.c in the Linux kernel before 3.12.4 does not ensure that a certain length value is consistent with the size of an associated data structure, which allows local users to obtain sensitive information from kernel memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call. La función mISDN_sock_recvmsg en drivers/isdn/mISDN/socket.c en el kernel Linux anteriores a 3.12.4 no se asegura de que cierto valor de longitud es consistente con el tama... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f3d3342602f8bcbf37d7c46641cb9bca7618eb1c • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 284EXPL: 0CVE-2013-7267
https://notcve.org/view.php?id=CVE-2013-7267
06 Jan 2014 — The atalk_recvmsg function in net/appletalk/ddp.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information from kernel memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call. La función atalk_recvmsg en net/appletalk/ddp.c en el kernel Linux anteriores a 3.12.4 actualiza cierto valor de longitud sin asegurarse de que una estructura de datos asociada ha sido i... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f3d3342602f8bcbf37d7c46641cb9bca7618eb1c • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 284EXPL: 0CVE-2013-7268
https://notcve.org/view.php?id=CVE-2013-7268
06 Jan 2014 — The ipx_recvmsg function in net/ipx/af_ipx.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information from kernel memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call. La función ipx_recvmsg en net/ipx/af_ipx.c en el kernel Linux anterior a 3.12.4 actualiza cierto valor de longitud sin asegurarde de que una estructura de datos asociada ha sido inicializada,... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f3d3342602f8bcbf37d7c46641cb9bca7618eb1c • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 284EXPL: 0CVE-2013-7269
https://notcve.org/view.php?id=CVE-2013-7269
06 Jan 2014 — The nr_recvmsg function in net/netrom/af_netrom.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information from kernel memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call. La función nr_recvmsg en net/netrom/af_netrom.c en el kernel Linux anterior a 3.12.4 actualiza cierto valor de longitud sin asegurarse de si una estructura de datos asociada ha sido inic... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f3d3342602f8bcbf37d7c46641cb9bca7618eb1c • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 284EXPL: 0CVE-2013-7271
https://notcve.org/view.php?id=CVE-2013-7271
06 Jan 2014 — The x25_recvmsg function in net/x25/af_x25.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information from kernel memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call. La función x25_recvmsg en net/x25/af_x25.c en el kernel Linux anteriores a 3.12.4 actualiza cierto valor de longitud sin asegurarse que una estructura de datos asociada fué inicializada, lo q... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f3d3342602f8bcbf37d7c46641cb9bca7618eb1c • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 284EXPL: 0CVE-2013-7270 – Kernel: net: information leak in recvmsg handler msg_name & msg_namelen logic
https://notcve.org/view.php?id=CVE-2013-7270
06 Jan 2014 — The packet_recvmsg function in net/packet/af_packet.c in the Linux kernel before 3.12.4 updates a certain length value before ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information from kernel memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call. la función packet_recvmsg en net/packet/af_packet.c en el kernel Linux anteriores a 3.12.4 actualiza cierto valor de longitud antes de asegurarse de si una estructura de datos asociad... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f3d3342602f8bcbf37d7c46641cb9bca7618eb1c • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 278EXPL: 1CVE-2013-6376
https://notcve.org/view.php?id=CVE-2013-6376
14 Dec 2013 — The recalculate_apic_map function in arch/x86/kvm/lapic.c in the KVM subsystem in the Linux kernel through 3.12.5 allows guest OS users to cause a denial of service (host OS crash) via a crafted ICR write operation in x2apic mode. La función recalculate_apic_map en arch/x86/kvm/lapic.c en el subsistema de KVM en el kernel de Linux hasta 3.12.5 permite a los usuarios del sistema operativo virtualizado provocar una denegación de servicio (caída del sistema operativo host) a través de una operación de escritur... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=17d68b763f09a9ce824ae23eb62c9efc57b69271 • CWE-189: Numeric Errors •