Description
The crypto_report_one function in crypto/crypto_user.c in the report API in the crypto user configuration API in the Linux kernel through 3.8.2 does not initialize certain structure members, which allows local users to obtain sensitive information from kernel heap memory by leveraging the CAP_NET_ADMIN capability.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| n/a | n/a | affected |
|
Configuration 1 [-]
|
Configuration 2 [-]
|
| Package | CPE | Advisory | Released Date |
|---|---|---|---|
| Red Hat Enterprise MRG 2 | |||
| kernel-rt-0:3.6.11.2-rt33.39.el6rt | cpe:/a:redhat:enterprise_mrg:2:server:el6 | RHSA-2013:0829 | 2013-05-20T00:00:00Z |
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2013-2489 | The crypto_report_one function in crypto/crypto_user.c in the report API in the crypto user configuration API in the Linux kernel through 3.8.2 does not initialize certain structure members, which allows local users to obtain sensitive information from kernel heap memory by leveraging the CAP_NET_ADMIN capability. |
 Ubuntu USN |
USN-1793-1 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-1794-1 | Linux kernel (OMAP4) vulnerabilities |
| Ubuntu USN |
USN-1795-1 | Linux kernel (Quantal HWE) vulnerabilities |
| Ubuntu USN |
USN-1796-1 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-1797-1 | Linux kernel (OMAP4) vulnerabilities |
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-06T15:44:32.059Z
Reserved: 2013-03-08T00:00:00.000Z
Link: CVE-2013-2547
Vulnrichment
No data.
NVD
Status : Deferred
Published: 2013-03-15T20:55:08.633
Modified: 2025-04-11T00:51:21.963
Link: CVE-2013-2547
Redhat
OpenCVE Enrichment
No data.
Weaknesses