Description
The fib6_add function in net/ipv6/ip6_fib.c in the Linux kernel before 3.11.5 does not properly implement error-code encoding, which allows local users to cause a denial of service (NULL pointer dereference and system crash) by leveraging the CAP_NET_ADMIN capability for an IPv6 SIOCADDRT ioctl call.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| n/a | n/a | affected |
|
Configuration 1 [-]
|
| Package | CPE | Advisory | Released Date |
|---|---|---|---|
| Red Hat Enterprise MRG 2 | |||
| kernel-rt-0:3.8.13-rt27.33.el6rt | cpe:/a:redhat:enterprise_mrg:2:server:el6 | RHSA-2014:0100 | 2014-01-28T00:00:00Z |
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2013-6241 | The fib6_add function in net/ipv6/ip6_fib.c in the Linux kernel before 3.11.5 does not properly implement error-code encoding, which allows local users to cause a denial of service (NULL pointer dereference and system crash) by leveraging the CAP_NET_ADMIN capability for an IPv6 SIOCADDRT ioctl call. |
 Ubuntu USN |
USN-2041-1 | Linux kernel (Raring HWE) vulnerabilities |
| Ubuntu USN |
USN-2045-1 | Linux kernel vulnerabilities |
| Ubuntu USN |
USN-2049-1 | Linux kernel vulnerabilities |
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published:
Updated: 2024-08-06T17:39:01.421Z
Reserved: 2013-11-04T00:00:00.000Z
Link: CVE-2013-6431
Vulnrichment
No data.
NVD
Status : Deferred
Published: 2013-12-09T18:55:10.407
Modified: 2025-04-11T00:51:21.963
Link: CVE-2013-6431
Redhat
OpenCVE Enrichment
No data.