ALT-BU-2013-1433-1
Branch c7 update bulletin.
Package kernel-image-std-def updated to version 3.10.22-alt1 for branch c7 in task 109931.
Closed vulnerabilities
Modified: 2026-04-29
CVE-2013-4348
The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.
- http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00002.html
- http://rhn.redhat.com/errata/RHSA-2013-1490.html
- http://www.ubuntu.com/usn/USN-2070-1
- http://www.ubuntu.com/usn/USN-2075-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1007939
- https://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=6f092343855a71e03b8d209815d8c45bf3a27fcd
- http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00002.html
- http://rhn.redhat.com/errata/RHSA-2013-1490.html
- http://www.ubuntu.com/usn/USN-2070-1
- http://www.ubuntu.com/usn/USN-2075-1
- https://bugzilla.redhat.com/show_bug.cgi?id=1007939
- https://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=6f092343855a71e03b8d209815d8c45bf3a27fcd
Package kernel-modules-virtualbox-addition-std-def updated to version 4.2.18-alt1.199190.1 for branch c7 in task 109931.
Closed vulnerabilities
Modified: 2026-04-29
CVE-2013-3792
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.18, 4.0.20, 4.1.28, and 4.2.18 allows local users to affect availability via unknown vectors related to Core.
Package kernel-modules-virtualbox-std-def updated to version 4.2.18-alt1.199190.1 for branch c7 in task 109931.
Closed vulnerabilities
Modified: 2026-04-29
CVE-2013-3792
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.18, 4.0.20, 4.1.28, and 4.2.18 allows local users to affect availability via unknown vectors related to Core.