CVE-2013-1059

CVSS v2.0 7.8 (High)

EPSS 4.00 % (92^th)

Affected Products 2

Advisories 58

net/ceph/auth_none.c in the Linux kernel through 3.10 allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via an auth_reply message that triggers an attempted build_request operation.

Weaknesses

CWE-476: NULL Pointer Dereference

CVE Status: PUBLISHED
CNA: Canonical Ltd.
Published Date: 2013-07-08 17:55:01
(11 years ago)
Updated Date: 2023-01-17 21:44:35
(20 months ago)

Affected Products

Canonical

Ubuntu Linux

Linux

Linux Kernel

Configuration #1

	CPE23	From	Up To
Linux Kernel prior 3.0.86 version	cpe:2.3:o:linux:linux_kernel		< 3.0.86
Linux Kernel from 3.1 version and prior 3.2.49 version	cpe:2.3:o:linux:linux_kernel	>= 3.1	< 3.2.49
Linux Kernel from 3.3 version and prior 3.4.53 version	cpe:2.3:o:linux:linux_kernel	>= 3.3	< 3.4.53
Linux Kernel from 3.5 version and prior 3.9.10 version	cpe:2.3:o:linux:linux_kernel	>= 3.5	< 3.9.10
Linux Kernel 3.10	cpe:2.3:o:linux:linux_kernel:3.10

Configuration #2

		CPE23	From	Up To
	Canonical Ubuntu Linux 12.04	cpe:2.3:o:canonical:ubuntu_linux:12.04:::*:-