Vulnerability CVE-2013-7263 - CERT Civis.Net

Vulnerability Name:

CVE-2013-7263 (CCN-90115)

Assigned:

2013-11-18

Published:

2013-11-18

Updated:

2017-12-16

Summary:

The Linux kernel before 3.12.4 updates certain length values before ensuring that associated data structures have been initialized, which allows local users to obtain sensitive information from kernel stack memory via a (1) recvfrom, (2) recvmmsg, or (3) recvmsg system call, related to net/ipv4/ping.c, net/ipv4/raw.c, net/ipv4/udp.c, net/ipv6/raw.c, and net/ipv6/udp.c.

CVSS v3 Severity:

6.2 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): None Availibility (A): None

CVSS v2 Severity:

4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): None Availibility (A): None

4.9 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): None Availibility (A): None

2.1 Low (REDHAT CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)
1.6 Low (REDHAT Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2013-7263

Source: CONFIRM
Type: UNKNOWN
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=bceaa90240b6019ed73b49965eac7d167610be69

Source: SUSE
Type: UNKNOWN
SUSE-SU-2014:0459

Source: SUSE
Type: UNKNOWN
SUSE-SU-2015:0481

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2015:0566

Source: SUSE
Type: UNKNOWN
SUSE-SU-2015:0652

Source: SUSE
Type: UNKNOWN
SUSE-SU-2015:0736

Source: CCN
Type: RHSA-2014-0159
Important: kernel security and bug fix update

Source: REDHAT
Type: UNKNOWN
RHSA-2014:0159

Source: CCN
Type: RHSA-2014-0285
Important: kernel security, bug fix, and enhancement update

Source: REDHAT
Type: UNKNOWN
RHSA-2014:0285

Source: CCN
Type: RHSA-2014-0439
Important: kernel-rt security, bug fix, and enhancement update

Source: CCN
Type: oss-security: Tue, 7 Jan 2014
CVE split and a missed file

Source: MLIST
Type: UNKNOWN
[oss-security] 20140107 oss-sec: CVE split and a missed file

Source: CCN
Type: SA55882
Linux Kernel "recvmsg()" and "recvfrom()" Information Disclosure Weaknesses

Source: SECUNIA
Type: UNKNOWN
55882

Source: CCN
Type: SA56036
Linux Kernel "recvmsg()" and "recvfrom()" Information Disclosure Weaknesses

Source: SECUNIA
Type: UNKNOWN
56036

Source: CONFIRM
Type: UNKNOWN
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.12.4

Source: MLIST
Type: UNKNOWN
[oss-security] 20131128 Re: CVE Request: Linux kernel: net: uninitialised memory leakage

Source: CCN
Type: BID-64686
Linux Kernel CVE-2013-7263 Multiple Information Disclosure Vulnerabilities

Source: UBUNTU
Type: UNKNOWN
USN-2107-1

Source: UBUNTU
Type: UNKNOWN
USN-2108-1

Source: UBUNTU
Type: UNKNOWN
USN-2109-1

Source: UBUNTU
Type: UNKNOWN
USN-2110-1

Source: UBUNTU
Type: UNKNOWN
USN-2113-1

Source: UBUNTU
Type: UNKNOWN
USN-2117-1

Source: UBUNTU
Type: UNKNOWN
USN-2135-1

Source: UBUNTU
Type: UNKNOWN
USN-2136-1

Source: UBUNTU
Type: UNKNOWN
USN-2138-1

Source: UBUNTU
Type: UNKNOWN
USN-2139-1

Source: UBUNTU
Type: UNKNOWN
USN-2141-1

Source: CONFIRM
Type: UNKNOWN
https://bugzilla.redhat.com/show_bug.cgi?id=1035875

Source: XF
Type: UNKNOWN
linux-kernel-cve20137263-info-disc(90115)

Source: CCN
Type: Linux Kernel GIT Repository
inet: prevent leakage of uninitialized memory to user in recv syscalls

Source: CONFIRM
Type: UNKNOWN
https://github.com/torvalds/linux/commit/bceaa90240b6019ed73b49965eac7d167610be69

Vulnerable Configuration:

Configuration 1:

cpe:/o:linux:linux_kernel:3.0:rc1:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0:rc2:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0:rc3:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0:rc4:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0:rc5:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0:rc6:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0:rc7:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.3:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.4:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.5:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.6:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.7:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.8:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.9:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.10:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.11:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.12:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.13:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.14:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.15:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.16:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.17:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.18:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.19:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.20:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.21:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.22:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.23:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.24:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.25:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.26:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.27:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.28:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.29:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.30:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.31:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.32:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.33:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.34:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.35:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.36:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.37:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.38:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.39:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.40:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.41:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.42:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.43:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.44:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.45:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.46:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.47:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.48:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.49:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.50:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.51:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.52:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.53:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.54:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.55:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.56:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.57:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.58:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.59:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.60:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.61:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.62:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.63:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.64:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.65:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.66:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.67:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.0.68:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1:-:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1:rc1:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1:rc2:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1:rc3:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1:rc4:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1.3:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1.4:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1.5:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1.6:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1.7:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1.8:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1.9:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.1.10:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2:-:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2:rc2:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2:rc3:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2:rc4:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2:rc5:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2:rc6:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2:rc7:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.3:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.4:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.5:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.6:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.7:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.8:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.9:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.10:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.11:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.12:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.13:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.14:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.15:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.16:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.17:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.18:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.19:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.20:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.21:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.22:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.23:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.24:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.25:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.26:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.27:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.28:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.29:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.2.30:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3:-:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3:rc1:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3:rc2:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3:rc3:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3:rc4:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3:rc5:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3:rc6:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3:rc7:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3.3:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3.4:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3.5:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3.6:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3.7:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.3.8:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4:-:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4:rc1:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4:rc2:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4:rc3:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4:rc4:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4:rc5:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4:rc6:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4:rc7:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.3:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.4:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.5:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.6:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.7:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.8:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.9:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.10:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.11:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.12:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.13:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.14:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.15:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.16:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.17:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.18:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.19:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.20:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.21:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.22:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.23:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.24:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.25:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.26:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.27:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.28:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.29:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.30:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.31:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.4.32:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.5.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.5.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.5.3:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.5.4:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.5.5:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.5.6:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.5.7:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.6:-:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.6.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.6.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.6.3:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.6.4:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.6.5:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.6.6:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.6.7:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.6.8:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.6.9:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.6.10:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.6.11:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.7:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.7.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.7.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.7.3:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.7.4:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.7.5:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.7.6:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.7.7:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.7.8:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.7.9:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.7.10:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.0:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.3:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.4:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.5:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.6:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.7:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.8:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.9:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.10:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.11:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.12:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.8.13:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9:rc1:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9:rc2:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9:rc3:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9:rc4:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9:rc5:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9:rc6:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9:rc7:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9.0:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9.3:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9.4:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9.5:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9.6:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9.7:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9.8:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9.9:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9.10:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.9.11:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.3:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.4:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.5:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.6:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.7:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.8:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.9:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.10:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.11:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.12:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.13:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.14:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.15:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.16:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.17:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.18:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.19:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.20:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.21:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.22:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.10.23:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.11:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.11.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.11.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.11.3:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.11.4:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.11.5:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.11.6:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.11.7:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.11.8:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.11.9:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.11.10:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.12:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.12.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.12.2:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:*:*:*:*:*:*:*:* (Version <= 3.12.3)

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:6::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:6::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

Configuration CCN 1:

cpe:/a:accelatech:bizsearch:3.2:-:*:*:*:linux_kernel:*:*

AND

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:6:*:server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:6:*:workstation:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_hpc_node:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_mrg:2.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20137263	V	CVE-2013-7263	2022-08-07
oval:org.opensuse.security:def:32240	P	Security update for the Linux Kernel (Live Patch 41 for SLE 12 SP3) (Important)	2021-12-14
oval:org.opensuse.security:def:26181	P	Security update for mozilla-nss (Important)	2021-12-06
oval:org.opensuse.security:def:31716	P	Security update for mozilla-nss (Important)	2021-12-06
oval:org.opensuse.security:def:26139	P	Security update for libvirt (Moderate)	2021-10-04
oval:org.opensuse.security:def:33016	P	Security update for python-urllib3 (Moderate)	2021-09-29
oval:org.opensuse.security:def:31642	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:36164	P	kernel-default-3.0.101-63.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36428	P	kernel-docs-3.0.101-63.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42571	P	kernel-default-3.0.101-63.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:31631	P	Security update for gstreamer-plugins-bad (Important)	2021-06-07
oval:org.opensuse.security:def:31630	P	Security update for polkit (Important)	2021-06-03
oval:org.opensuse.security:def:26055	P	Security update for hivex (Moderate)	2021-05-26
oval:org.opensuse.security:def:26053	P	Security update for libxml2 (Important)	2021-05-19
oval:org.opensuse.security:def:33905	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:32084	P	Security update for gdm (Important)	2021-04-28
oval:org.opensuse.security:def:33088	P	Security update for MozillaFirefox (Important)	2021-03-01
oval:org.opensuse.security:def:33073	P	Security update for wpa_supplicant (Important)	2021-02-15
oval:org.opensuse.security:def:25977	P	Security update for openssl-1_1 (Important)	2020-12-10
oval:org.opensuse.security:def:32487	P	apache2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26656	P	zoo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28399	P	Security update for sane-backends (Moderate)	2020-12-01
oval:org.opensuse.security:def:27426	P	kernel-docs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25714	P	Security update for libpng16 (Moderate)	2020-12-01
oval:org.opensuse.security:def:28824	P	Recommended update for python-setuptools (Moderate)	2020-12-01
oval:org.opensuse.security:def:33228	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29135	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:31848	P	Security update for clamav (Moderate)	2020-12-01
oval:org.opensuse.security:def:26431	P	Security update for tor (Moderate)	2020-12-01
oval:org.opensuse.security:def:32296	P	Security update for procmail (Moderate)	2020-12-01
oval:org.opensuse.security:def:32398	P	Security update for unzip (Moderate)	2020-12-01
oval:org.opensuse.security:def:26554	P	ghostscript-fonts-other on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28387	P	Security update for rubygem-rack-1_4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32773	P	postgresql on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26753	P	libmysqlclient15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28683	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:33161	P	libmspack0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25917	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:29079	P	Security update for curl (Important)	2020-12-01
oval:org.opensuse.security:def:26343	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:29853	P	Security update for Linux Kernel	2020-12-01
oval:org.opensuse.security:def:25978	P	Security update for tcpdump, libpcap (Moderate)	2020-12-01
oval:org.opensuse.security:def:27127	P	freetype2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26319	P	Security update for kde-cli-tools5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32406	P	Security update for wavpack (Moderate)	2020-12-01
oval:org.opensuse.security:def:32622	P	LibVNCServer on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26695	P	fetchmail on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28467	P	Security update for xorg-x11-libXpm (Moderate)	2020-12-01
oval:org.opensuse.security:def:25725	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:28976	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:33866	P	Security update for jasper (Important)	2020-12-01
oval:org.opensuse.security:def:29179	P	Security update for microcode_ctl (Moderate)	2020-12-01
oval:org.opensuse.security:def:31940	P	Recommended update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:26445	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:32345	P	Security update for spice (Important)	2020-12-01
oval:org.opensuse.security:def:32409	P	Security update for wget (Moderate)	2020-12-01
oval:org.opensuse.security:def:26607	P	libvorbis on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33127	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28388	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:32860	P	findutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27391	P	e2fsprogs-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25713	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:28740	P	Security update for libevent	2020-12-01
oval:org.opensuse.security:def:33184	P	libsss_idmap0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25998	P	Security update for libreoffice (Important)	2020-12-01
oval:org.opensuse.security:def:29118	P	Security update for java-1_7_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:26392	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:25989	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:27162	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32397	P	Security update for unzip (Moderate)	2020-12-01
oval:org.opensuse.security:def:26403	P	Security update for ffmpeg (Moderate)	2020-12-01
oval:org.opensuse.security:def:32450	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:32716	P	libltdl7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26709	P	gmime on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28598	P	Security update for ruby	2020-12-01
oval:org.opensuse.security:def:33122	P	kdebase4-runtime on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25789	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:29030	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:26290	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:29817	P	Security update for jasper (Low)	2020-12-01
oval:org.opensuse.security:def:31997	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:26489	P	Security update for php7-imagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:26262	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:32384	P	Security update for tiff (Low)	2020-12-01
oval:org.mitre.oval:def:27275	P	ELSA-2014-0285-1 -- kernel security, bug fix, and enhancement update (important)	2015-03-16
oval:org.mitre.oval:def:26025	P	SUSE-SU-2014:0807-1 -- Security update for Linux Kernel	2015-03-16
oval:org.mitre.oval:def:27278	P	ELSA-2014-3011 -- Unbreakable Enterprise kernel security update (important)	2015-03-16
oval:org.mitre.oval:def:27242	P	ELSA-2014-3010 -- Unbreakable Enterprise kernel security update (important)	2015-03-16
oval:org.mitre.oval:def:27319	P	ELSA-2014-3009 -- unbreakable enterprise kernel security update (important)	2014-12-15
oval:org.mitre.oval:def:26156	P	SUSE-SU-2014:0832-1 -- Security update for Linux Kernel	2014-09-15
oval:org.mitre.oval:def:25408	P	SUSE-SU-2014:0696-1 -- Security update for Linux kernel	2014-09-08
oval:org.mitre.oval:def:25533	P	SUSE-SU-2014:0459-1 -- Security update for Linux Kernel	2014-09-08
oval:org.mitre.oval:def:25438	P	SUSE-SU-2014:0772-1 -- Security update for Linux Kernel	2014-09-08
oval:org.mitre.oval:def:25440	P	SUSE-SU-2014:0773-1 -- Security update for Linux Kernel	2014-09-08
oval:org.mitre.oval:def:25525	P	SUSE-SU-2014:0531-1 -- Security update for Linux kernel	2014-09-08
oval:org.mitre.oval:def:23441	P	USN-2117-1 -- linux vulnerabilities	2014-07-21
oval:org.mitre.oval:def:24394	P	USN-2139-1 -- linux-ti-omap4 vulnerabilities	2014-07-21
oval:org.mitre.oval:def:24074	P	USN-2135-1 -- linux-lts-quantal vulnerabilities	2014-07-21
oval:org.mitre.oval:def:24274	P	USN-2108-1 -- linux-ec2 vulnerabilities	2014-07-21
oval:org.mitre.oval:def:23863	P	ELSA-2014:0285: kernel security, bug fix, and enhancement update (Important)	2014-07-21
oval:org.mitre.oval:def:24412	P	DSA-2906-1 linux-2.6 - several	2014-07-21
oval:org.mitre.oval:def:24316	P	USN-2138-1 -- linux vulnerabilities	2014-07-21
oval:org.mitre.oval:def:24254	P	RHSA-2014:0285: kernel security, bug fix, and enhancement update (Important)	2014-07-07
oval:org.mitre.oval:def:23857	P	USN-2107-1 -- linux vulnerabilities	2014-07-07
oval:org.mitre.oval:def:22287	P	RHSA-2014:0159: kernel security and bug fix update (Important)	2014-07-07
oval:org.mitre.oval:def:24261	P	USN-2109-1 -- linux vulnerabilities	2014-06-30
oval:org.mitre.oval:def:24404	P	USN-2141-1 -- linux-ti-omap4 vulnerabilities	2014-06-30
oval:org.mitre.oval:def:24220	P	USN-2113-1 -- linux-lts-saucy vulnerabilities	2014-06-30
oval:org.mitre.oval:def:24233	P	USN-2136-1 -- linux-lts-raring vulnerabilities	2014-06-30
oval:org.mitre.oval:def:23421	P	USN-2110-1 -- linux-ti-omap4 vulnerabilities	2014-06-30
oval:org.mitre.oval:def:23981	P	ELSA-2014:0159: kernel security and bug fix update (Important)	2014-05-26
oval:com.redhat.rhsa:def:20140285	P	RHSA-2014:0285: kernel security, bug fix, and enhancement update (Important)	2014-03-12
oval:com.redhat.rhsa:def:20140159	P	RHSA-2014:0159: kernel security and bug fix update (Important)	2014-02-11
oval:com.ubuntu.xenial:def:20137263000	V	CVE-2013-7263 on Ubuntu 16.04 LTS (xenial) - low.	2014-01-06
oval:com.ubuntu.xenial:def:201372630000000	V	CVE-2013-7263 on Ubuntu 16.04 LTS (xenial) - low.	2014-01-06
oval:com.ubuntu.precise:def:20137263000	V	CVE-2013-7263 on Ubuntu 12.04 LTS (precise) - low.	2014-01-06
oval:com.ubuntu.trusty:def:20137263000	V	CVE-2013-7263 on Ubuntu 14.04 LTS (trusty) - low.	2014-01-06