BDU:2014-00089

Уязвимость операционной системы Linux, приводящая к раскрытию информации

Severity: LOW (3.3) Vector: AV:L/AC:M/Au:N/C:P/I:P/A:N

References:

CVE-2013-2929

Published: 2013-01-22

BDU:2015-04307

Уязвимости операционной системы SUSE Linux Enterprise, позволяющие злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

Severity: CRITICAL (10.0) Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

References:

Published: 1970-01-01

BDU:2015-04308

Severity: CRITICAL (10.0) Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

References:

Published: 1970-01-01

BDU:2015-04309

Severity: CRITICAL (10.0) Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

References:

Published: 1970-01-01

BDU:2015-04310

Severity: CRITICAL (10.0) Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

References:

Published: 2013-12-09
Modified: 2025-04-11

CVE-2013-2929

The Linux kernel before 3.12.2 does not properly use the get_dumpable function, which allows local users to bypass intended ptrace restrictions or obtain sensitive information from IA64 scratch registers via a crafted application, related to kernel/ptrace.c and arch/ia64/include/asm/processor.h.

Severity: LOW (3.3) Vector: AV:L/AC:M/Au:N/C:P/I:P/A:N

References:

Published: 2013-12-09
Modified: 2025-04-11

CVE-2013-2930

The perf_trace_event_perm function in kernel/trace/trace_event_perf.c in the Linux kernel before 3.12.2 does not properly restrict access to the perf subsystem, which allows local users to enable function tracing via a crafted application.

Severity: LOW (3.6) Vector: AV:L/AC:L/Au:N/C:P/I:P/A:N

References:

Version: 2.1.2

Package kernel-image-led-vs update in sisyphus on 2013-11-30

ALT-PU-2013-1222-1

Closed vulnerabilities

BDU:2014-00089

BDU:2015-04307

BDU:2015-04308

BDU:2015-04309

BDU:2015-04310

CVE-2013-2929

CVE-2013-2930