CVE-2013-1763 — Vulnetix

Try Vulnetix Request Demo

CVE-2013-1763 REJECTED

Array index error in the __sock_diag_rcv_msg function in net/core/sock_diag.c in the Linux kernel before 3.7.10 allows local users to gain privileges via a large family value in a Netlink message.

EPSS 16.36% · 94.8th percentile

Risk Scores

EPSS Score

16.36%

94.8th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:14.04:LTS	linux-manta	3.4.0-4.19, 0
Ubuntu:16.04:LTS	linux-gke	0
Ubuntu:14.04:LTS	linux-lts-wily	0
Ubuntu:14.04:LTS	linux-lts-vivid	0
Ubuntu:16.04:LTS	linux-goldfish	3.4.0-4.26, 0, 3.4.0-4.24
Ubuntu:16.04:LTS	linux-aws	0
Ubuntu:16.04:LTS	linux-flo	0, 3.4.0-5.19
Ubuntu:16.04:LTS	linux	0
Ubuntu:14.04:LTS	linux	0
Ubuntu:16.04:LTS	linux-raspi2	0
Ubuntu:14.04:LTS	linux-aws	0
Ubuntu:16.04:LTS	linux-mako	0, 3.4.0-7.39
Ubuntu:14.04:LTS	linux-lts-utopic	0
Ubuntu:14.04:LTS	linux-flo	0
Ubuntu:14.04:LTS	linux-mako	3.4.0-3.21, 0
Ubuntu:16.04:LTS	linux-hwe	0
Ubuntu:16.04:LTS	linux-snapdragon	0
Ubuntu:14.04:LTS	linux-lts-xenial	0

Timeline

Mar 13, 2013 PoC Published
Jun 11, 2013 PoC Published
May 16, 2014 PoC Published
May 31, 2014 PoC Published
Dec 3, 2017 PoC Published
Mar 19, 2018 PoC Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Feb 4, 2023 EPSS Score

References

https://ubuntu.com/security/CVE-2013-1763 third-party-advisory
http://thread.gmane.org/gmane.linux.network/260061 third-party-advisory
http://seclists.org/oss-sec/2013/q1/420 third-party-advisory
https://rdot.org/forum/showthread.php?p=30828 third-party-advisory
https://ubuntu.com/security/notices/USN-1749-1 vendor-advisory
https://ubuntu.com/security/notices/USN-1750-1 vendor-advisory
https://ubuntu.com/security/notices/USN-1751-1 vendor-advisory
https://www.cve.org/CVERecord?id=CVE-2013-1763 third-party-advisory

Open in Interactive Console →