CVE-2013-6431 in Kernelinfo

Summary

The fib6_add function in net/ipv6/ip6_fib.c in the Linux kernel before 3.11.5 does not properly implement error-code encoding, which allows local users to cause a denial of service (NULL pointer dereference and system crash) by leveraging the CAP_NET_ADMIN capability for an IPv6 SIOCADDRT ioctl call.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

11/04/2013

Disclosure

12/09/2013

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
11472	Linux Kernel IPv6 Socket IOCTL ip6_fib.c fib6_add access control	264	Not defined	Official fix	CVE-2013-6431

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!