CVE-2013-6381

Linux Kernel < 3.2.54 - Buffer Overflow via SNMP Ioctl Call

Title source: llm
STIX 2.1

Description

Buffer overflow in the qeth_snmp_command function in drivers/s390/net/qeth_core_main.c in the Linux kernel through 3.12.1 allows local users to cause a denial of service or possibly have unspecified other impact via an SNMP ioctl call with a length value that is incompatible with the command-buffer size.

References (8)

Core 8
Core References
Third Party Advisory, VDB Entry vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0159.html
Third Party Advisory, VDB Entry vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0285.html
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2013/11/22/5
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1033600
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/63890
Third Party Advisory, VDB Entry vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0284.html

Scores

EPSS 0.0057
EPSS Percentile 43.4%

Details

CWE
CWE-119
Status published
Products (1)
linux/linux_kernel < 3.2.54
Published Nov 27, 2013
Tracked Since Feb 18, 2026