CVE-2013-2147
Kernel: cpqarray/cciss: information leak via ioctl
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
The HP Smart Array controller disk-array driver and Compaq SMART2 controller disk-array driver in the Linux kernel through 3.9.4 do not initialize certain data structures, which allows local users to obtain sensitive information from kernel memory via (1) a crafted IDAGETPCIINFO command for a /dev/ida device, related to the ida_locked_ioctl function in drivers/block/cpqarray.c or (2) a crafted CCISS_PASSTHRU32 command for a /dev/cciss device, related to the cciss_ioctl32_passthru function in drivers/block/cciss.c.
El controlador de array de discos HP Smart Array y el controlador de array de discos Compaq SMART2 en Linux kernel hasta v3.9.4 no inicializa ciertas estructuras de datos, lo que permite a usuarios locales obtener información sensible de la memoria del kernel a través de (1) un comando modificado IDAGETPCIINFO para el dispositivo /dev/ida, relacionado con la función ida_locked_ioctl en drivers/block/cpqarray.c o (2) un comando modificado CCISS_PASSTHRU32 para el dispositivo /dev/cciss relacionado con la función cciss_ioctl32_passthru en drivers/block/cciss.c.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2013-02-19 CVE Reserved
- 2013-06-07 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-399: Resource Management Errors
CAPEC
References (17)
| URL | Tag | Source |
|---|---|---|
| http://lkml.org/lkml/2013/6/3/127 | Mailing List | |
| http://lkml.org/lkml/2013/6/3/131 | Mailing List | |
| http://www.openwall.com/lists/oss-security/2013/06/05/25 | Mailing List |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html | 2018-01-09 | |
| http://rhn.redhat.com/errata/RHSA-2013-1166.html | 2018-01-09 | |
| http://www.ubuntu.com/usn/USN-1994-1 | 2018-01-09 | |
| http://www.ubuntu.com/usn/USN-1996-1 | 2018-01-09 | |
| http://www.ubuntu.com/usn/USN-1997-1 | 2018-01-09 | |
| http://www.ubuntu.com/usn/USN-1999-1 | 2018-01-09 | |
| http://www.ubuntu.com/usn/USN-2015-1 | 2018-01-09 | |
| http://www.ubuntu.com/usn/USN-2016-1 | 2018-01-09 | |
| http://www.ubuntu.com/usn/USN-2017-1 | 2018-01-09 | |
| http://www.ubuntu.com/usn/USN-2020-1 | 2018-01-09 | |
| http://www.ubuntu.com/usn/USN-2023-1 | 2018-01-09 | |
| http://www.ubuntu.com/usn/USN-2050-1 | 2018-01-09 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=971242 | 2013-09-16 | |
| https://access.redhat.com/security/cve/CVE-2013-2147 | 2013-09-16 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | <= 3.9.4 Search vendor "Linux" for product "Linux Kernel" and version " <= 3.9.4" | - |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 3.9 Search vendor "Linux" for product "Linux Kernel" and version "3.9" | rc1 |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 3.9 Search vendor "Linux" for product "Linux Kernel" and version "3.9" | rc2 |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 3.9 Search vendor "Linux" for product "Linux Kernel" and version "3.9" | rc3 |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 3.9 Search vendor "Linux" for product "Linux Kernel" and version "3.9" | rc4 |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 3.9 Search vendor "Linux" for product "Linux Kernel" and version "3.9" | rc5 |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 3.9 Search vendor "Linux" for product "Linux Kernel" and version "3.9" | rc6 |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 3.9 Search vendor "Linux" for product "Linux Kernel" and version "3.9" | rc7 |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 3.9.0 Search vendor "Linux" for product "Linux Kernel" and version "3.9.0" | - |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 3.9.1 Search vendor "Linux" for product "Linux Kernel" and version "3.9.1" | - |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 3.9.2 Search vendor "Linux" for product "Linux Kernel" and version "3.9.2" | - |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 3.9.3 Search vendor "Linux" for product "Linux Kernel" and version "3.9.3" | - |
Affected
| ||||||
| Suse Search vendor "Suse" | Linux Enterprise Server Search vendor "Suse" for product "Linux Enterprise Server" | 10 Search vendor "Suse" for product "Linux Enterprise Server" and version "10" | sp4 |
Affected
| ||||||