Security Advisory

CVE-2013-1826

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-03-22 10:00:00

Last updated 2024-08-06 15:13:33

Assigner redhat

State PUBLISHED

Description

The xfrm_state_netlink function in net/xfrm/xfrm_user.c in the Linux kernel before 3.5.7 does not properly handle error conditions in dump_one_state function calls, which allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by leveraging the CAP_NET_ADMIN capability.

← Browse all CVEs View on cve.org ↗