CVE 2013-2224
A certain Red Hat patch for the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows local users to cause a denial of service (invalid free operation and system crash) or possibly gain privileges via a sendmsg system call with the IP_RETOPTS option, as demonstrated by hemlock.c. NOTE: this vulnerability exists because of an incorrect fix for CVE-2012-3552.
Related bugs and status
CVE-2013-2224 (Candidate) is related to these bugs:
Bug #1196796: CVE-2013-2224
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1196796 | CVE-2013-2224 | linux (Ubuntu) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-fsl-imx51 (Ubuntu) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-mvl-dove (Ubuntu) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-backport-maverick (Ubuntu) | Undecided | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-backport-natty (Ubuntu) | Undecided | Invalid | ||
1196796 | CVE-2013-2224 | linux-ti-omap4 (Ubuntu) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-ec2 (Ubuntu) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux (Ubuntu Saucy) | Medium | Won't Fix | ||
1196796 | CVE-2013-2224 | linux-ec2 (Ubuntu Saucy) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-fsl-imx51 (Ubuntu Saucy) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-backport-maverick (Ubuntu Saucy) | Undecided | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-backport-natty (Ubuntu Saucy) | Undecided | Invalid | ||
1196796 | CVE-2013-2224 | linux-mvl-dove (Ubuntu Saucy) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-ti-omap4 (Ubuntu Saucy) | Medium | Won't Fix | ||
1196796 | CVE-2013-2224 | linux (Ubuntu Raring) | Medium | Won't Fix | ||
1196796 | CVE-2013-2224 | linux-ec2 (Ubuntu Raring) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-fsl-imx51 (Ubuntu Raring) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-backport-maverick (Ubuntu Raring) | Undecided | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-backport-natty (Ubuntu Raring) | Undecided | Invalid | ||
1196796 | CVE-2013-2224 | linux-mvl-dove (Ubuntu Raring) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-ti-omap4 (Ubuntu Raring) | Medium | Won't Fix | ||
1196796 | CVE-2013-2224 | linux (Ubuntu Quantal) | Medium | Won't Fix | ||
1196796 | CVE-2013-2224 | linux-ec2 (Ubuntu Quantal) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-fsl-imx51 (Ubuntu Quantal) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-backport-maverick (Ubuntu Quantal) | Undecided | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-backport-natty (Ubuntu Quantal) | Undecided | Invalid | ||
1196796 | CVE-2013-2224 | linux-mvl-dove (Ubuntu Quantal) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-ti-omap4 (Ubuntu Quantal) | Medium | Won't Fix | ||
1196796 | CVE-2013-2224 | linux (Ubuntu Precise) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-ec2 (Ubuntu Precise) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-fsl-imx51 (Ubuntu Precise) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-backport-maverick (Ubuntu Precise) | Undecided | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-backport-natty (Ubuntu Precise) | Undecided | Invalid | ||
1196796 | CVE-2013-2224 | linux-mvl-dove (Ubuntu Precise) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-ti-omap4 (Ubuntu Precise) | Medium | Won't Fix | ||
1196796 | CVE-2013-2224 | linux (Ubuntu Lucid) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-ec2 (Ubuntu Lucid) | Medium | Won't Fix | ||
1196796 | CVE-2013-2224 | linux-fsl-imx51 (Ubuntu Lucid) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-backport-maverick (Ubuntu Lucid) | Undecided | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-backport-natty (Ubuntu Lucid) | Undecided | Invalid | ||
1196796 | CVE-2013-2224 | linux-mvl-dove (Ubuntu Lucid) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-ti-omap4 (Ubuntu Lucid) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-armadaxp (Ubuntu) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-armadaxp (Ubuntu Lucid) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-armadaxp (Ubuntu Precise) | Medium | Won't Fix | ||
1196796 | CVE-2013-2224 | linux-armadaxp (Ubuntu Quantal) | Medium | Won't Fix | ||
1196796 | CVE-2013-2224 | linux-armadaxp (Ubuntu Raring) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-armadaxp (Ubuntu Saucy) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-quantal (Ubuntu) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-quantal (Ubuntu Lucid) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-quantal (Ubuntu Precise) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-quantal (Ubuntu Quantal) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-quantal (Ubuntu Raring) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-quantal (Ubuntu Saucy) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-raring (Ubuntu) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-raring (Ubuntu Lucid) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-raring (Ubuntu Precise) | Medium | Won't Fix | ||
1196796 | CVE-2013-2224 | linux-lts-raring (Ubuntu Quantal) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-raring (Ubuntu Raring) | Medium | Invalid | ||
1196796 | CVE-2013-2224 | linux-lts-raring (Ubuntu Saucy) | Medium | Invalid |
See the
CVE page on Mitre.org
for more details.