[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2013-0373":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":86,"duplicates":87,"related":88,"reserved_at":9,"published_at":125,"modified_at":126,"state":9,"summary":127,"references_raw":129,"kevs":246,"epss":9,"epss_history":247,"metrics":248,"affected":249},"MGASA-2013-0373","Updated kernel-tmb packages fix security vulnerabilities\n\nThis kernel-tmb update provides an update to the 3.10 longterm branch,\ncurrently 3.10.24 and fixes the following security issues:\n\nThe ipv6_create_tempaddr function in net/ipv6/addrconf.c in the Linux\nkernel through 3.10 does not properly handle problems with the generation\nof IPv6 temporary addresses, which allows remote attackers to cause a\ndenial of service (excessive retries and address-generation outage), and\nconsequently obtain sensitive information, via ICMPv6 Router Advertisement\n(RA) messages. (CVE-2013-0343)\n\nnet/ceph/auth_none.c in the Linux kernel through 3.10 allows remote\nattackers to cause a denial of service (NULL pointer dereference and\nsystem crash) or possibly have unspecified other impact via an auth_reply\nmessage that triggers an attempted build_request operation.\n(CVE-2013-1059)\n\nThe dispatch_discard_io function in drivers/block/xen-blkback/blkback.c in\nthe Xen blkback implementation in the Linux kernel before 3.10.5 allows\nguest OS users to cause a denial of service (data loss) via filesystem\nwrite operations on a read-only disk that supports the (1) \nBLKIF_OP_DISCARD (aka discard or TRIM) or (2) SCSI UNMAP feature.\n(CVE-2013-2140)\n\nThe HP Smart Array controller disk-array driver and Compaq SMART2\ncontroller disk-array driver in the Linux kernel through 3.9.4 do not\ninitialize certain data structures, which allows local users to obtain\nsensitive information from kernel memory via (1) a crafted IDAGETPCIINFO\ncommand for a /dev/ida device, related to the ida_locked_ioctl function in\ndrivers/block/cpqarray.c or (2) a crafted CCISS_PASSTHRU32 command for a\n/dev/cciss device, related to the cciss_ioctl32_passthru function in\ndrivers/block/cciss.c. (CVE-2013-2147)\n\nFormat string vulnerability in the register_disk function in block/genhd.c\nin the Linux kernel through 3.9.4 allows local users to gain privileges by\nleveraging root access and writing format string specifiers to\n/sys/module/md_mod/parameters/new_array in order to create a crafted\n/dev/md device name. (CVE-2013-2851)\n\nMultiple array index errors in drivers/hid/hid-core.c in the Human\nInterface Device (HID) subsystem in the Linux kernel through 3.11\nallow physically proximate attackers to execute arbitrary code or\ncause a denial of service (heap memory corruption) via a crafted\ndevice that provides an invalid Report ID (CVE-2013-2888).\n\ndrivers/hid/hid-zpff.c in the Human Interface Device (HID) subsystem\nin the Linux kernel through 3.11, when CONFIG_HID_ZEROPLUS is enabled,\nallows physically proximate attackers to cause a denial of service\n(heap-based out-of-bounds write) via a crafted device (CVE-2013-2889).\n\ndrivers/hid/hid-steelseries.c in the Human Interface Device (HID)\nsubsystem in the Linux kernel through 3.11, when CONFIG_HID_STEELSERIES is\nenabled, allows physically proximate attackers to cause a denial of\nservice (heap-based out-of-bounds write) via a crafted device.\n(CVE-2013-2891)\n\ndrivers/hid/hid-pl.c in the Human Interface Device (HID) subsystem in\nthe Linux kernel through 3.11, when CONFIG_HID_PANTHERLORD is enabled,\nallows physically proximate attackers to cause a denial of service\n(heap-based out-of-bounds write) via a crafted device (CVE-2013-2892).\n\nThe Human Interface Device (HID) subsystem in the Linux kernel\nthrough 3.11, when CONFIG_LOGITECH_FF, CONFIG_LOGIG940_FF, or\nCONFIG_LOGIWHEELS_FF is enabled, allows physically proximate\nattackers to cause a denial of service (heap-based out-of-bounds\nwrite) via a crafted device, related to (1) drivers/hid/hid-lgff.c,\n(2) drivers/hid/hid-lg3ff.c, and (3) drivers/hid/hid-lg4ff.c\n(CVE-2013-2893).\n\ndrivers/hid/hid-lenovo-tpkbd.c in the Human Interface Device (HID)\nsubsystem in the Linux kernel through 3.11, when CONFIG_HID_LENOVO_TPKBD\nis enabled, allows physically proximate attackers to cause a denial of\nservice (heap-based out-of-bounds write) via a crafted device.\n(CVE-2013-2894)\n\ndrivers/hid/hid-logitech-dj.c in the Human Interface Device (HID)\nsubsystem in the Linux kernel through 3.11, when CONFIG_HID_LOGITECH_DJ\nis enabled, allows physically proximate attackers to cause a denial\nof service (NULL pointer dereference and OOPS) or obtain sensitive\ninformation from kernel memory via a crafted device (CVE-2013-2895).\n\ndrivers/hid/hid-ntrig.c in the Human Interface Device (HID)\nsubsystem in the Linux kernel through 3.11, when CONFIG_HID_NTRIG\nis enabled, allows physically proximate attackers to cause a denial\nof service (NULL pointer dereference and OOPS) via a crafted device\n(CVE-2013-2896).\n\nMultiple array index errors in drivers/hid/hid-multitouch.c in the\nHuman Interface Device (HID) subsystem in the Linux kernel through\n3.11, when CONFIG_HID_MULTITOUCH is enabled, allow physically proximate\nattackers to cause a denial of service (heap memory corruption, or NULL\npointer dereference and OOPS) via a crafted device (CVE-2013-2897).\n\ndrivers/hid/hid-sensor-hub.c in the Human Interface Device (HID) subsystem\nin the Linux kernel through 3.11, when CONFIG_HID_SENSOR_HUB is enabled,\nallows physically proximate attackers to obtain sensitive information from\nkernel memory via a crafted device. (CVE-2013-2898)\n\ndrivers/hid/hid-picolcd_core.c in the Human Interface Device (HID)\nsubsystem in the Linux kernel through 3.11, when CONFIG_HID_PICOLCD\nis enabled, allows physically proximate attackers to cause a denial\nof service (NULL pointer dereference and OOPS) via a crafted device\n(CVE-2013-2899).\n\nThe Linux kernel before 3.12.2 does not properly use the get_dumpable\nfunction, which allows local users to bypass intended ptrace restrictions\nor obtain sensitive information from IA64 scratch registers via a crafted\napplication, related to kernel/ptrace.c and arch/ia64/include/asm/processor.h\n(CVE-2013-2929)\n\nThe perf_trace_event_perm function in kernel/trace/trace_event_perf.c in the\nLinux kernel before 3.12.2 does not properly restrict access to the perf\nsubsystem, which allows local users to enable function tracing via a crafted\napplication. (CVE-2013-2930)\n\nThe udp_v6_push_pending_frames function in net/ipv6/udp.c in the IPv6\nimplementation in the Linux kernel through 3.10.3 makes an incorrect\nfunction call for pending data, which allows local users to cause a\ndenial of service (BUG and system crash) via a crafted application that\nuses the UDP_CORK option in a setsockopt system call (CVE-2013-4162).\n\nThe ip6_append_data_mtu function in net/ipv6/ip6_output.c in the IPv6\nimplementation in the Linux kernel through 3.10.3 does not properly\nmaintain information about whether the IPV6_MTU setsockopt option\nhad been specified, which allows local users to cause a denial of\nservice (BUG and system crash) via a crafted application that uses\nthe UDP_CORK option in a setsockopt system call (CVE-2013-4163).\n\nThe validate_event function in arch/arm/kernel/perf_event.c in the\nLinux kernel before 3.10.8 on the ARM platform allows local users to\ngain privileges or cause a denial of service (NULL pointer dereference\nand system crash) by adding a hardware event to an event group led\nby a software event (CVE-2013-4254)\n\nInterpretation conflict in drivers/md/dm-snap-persistent.c in the Linux\nkernel through 3.11.6 allows remote authenticated users to obtain\nsensitive information or modify data via a crafted mapping to a snapshot\nblock device. (CVE-2013-4299)\n\nThe skb_flow_dissect function in net/core/flow_dissector.c in the\nLinux kernel through 3.12 allows remote attackers to cause a denial\nof service (infinite loop) via a small value in the IHL field of a\npacket with IPIP encapsulation (CVE-2013-4348).\n\nThe IPv6 SCTP implementation in net/sctp/ipv6.c in the Linux kernel\nthrough 3.11.1 uses data structures and function calls that do not\ntrigger an intended configuration of IPsec encryption, which allows\nremote attackers to obtain sensitive information by sniffing the\nnetwork (CVE-2013-4350).\n\nnet/ipv6/ip6_output.c in the Linux kernel through 3.11.4 does not\nproperly determine the need for UDP Fragmentation Offload (UFO)\nprocessing of small packets after the UFO queueing of a large packet,\nwhich allows remote attackers to cause a denial of service (memory\ncorruption and system crash) or possibly have unspecified other\nimpact via network traffic that triggers a large response packet\n(CVE-2013-4387).\n\nThe Linux kernel before 3.12, when UDP Fragmentation Offload (UFO) is\nenabled, does not properly initialize certain data structures, which\nallows local users to cause a denial of service (memory corruption and\nsystem crash) or possibly gain privileges via a crafted application\nthat uses the UDP_CORK option in a setsockopt system call and\nsends both short and long packets, related to the ip_ufo_append_data\nfunction in net/ipv4/ip_output.c and the ip6_ufo_append_data function\nin net/ipv6/ip6_output.c (CVE-2013-4470).\n\nBuffer overflow in the oz_cdev_write function in\ndrivers/staging/ozwpan/ozcdev.c in the Linux kernel before 3.12 allows\nlocal users to cause a denial of service or possibly have unspecified\nother impact via a crafted write operation. (CVE-2013-4513)\n\nArray index error in the kvm_vm_ioctl_create_vcpu function in \nvirt/kvm/kvm_main.c in the KVM subsystem in the Linux kernel through\n3.12.5 allows local users to gain privileges via a large id value\n(CVE-2013-4587)\n\nThe apic_get_tmcct function in arch/x86/kvm/lapic.c in the KVM subsystem\nin the Linux kernel through 3.12.5 allows guest OS users to cause a denial\nof service (divide-by-zero error and host OS crash) via crafted\nmodifications of the TMICT value. (CVE-2013-6367)\n\nThe KVM subsystem in the Linux kernel through 3.12.5 allows local users to\ngain privileges or cause a denial of service (system crash) via a VAPIC\nsynchronization operation involving a page-end address.  (CVE-2013-6368)\n\nThe recalculate_apic_map function in arch/x86/kvm/lapic.c in the KVM\nsubsystem  in the Linux kernel through 3.12.5 allows guest OS users to\ncause a denial of service (host OS crash) via a crafted ICR write\noperation in x2apic mode. (CVE-2013-6376)\n\nThe lbs_debugfs_write function in drivers/net/wireless/libertas/debugfs.c\nin the Linux kernel through 3.12.1 allows local users to cause a denial of\nservice (OOPS) by leveraging root privileges for a zero-length write\noperation. (CVE-2013-6378)\n\nThe aac_send_raw_srb function in drivers/scsi/aacraid/commctrl.c in the\nLinux kernel through 3.12.1 does not properly validate a certain size\nvalue, which allows local users to cause a denial of service (invalid\npointer dereference) or possibly have unspecified other impact via an\nFSACTL_SEND_RAW_SRB ioctl call that triggers a crafted SRB command.\n(CVE-2013-6380)\n\nBuffer overflow in the qeth_snmp_command function in \ndrivers/s390/net/qeth_core_main.c in the Linux kernel through 3.12.1\nallows local users to cause a denial of service or possibly have\nunspecified other impact via an  SNMP ioctl call with a length value that\nis incompatible with the command-buffer size. (CVE-2013-6381)\n\nMultiple buffer underflows in the XFS implementation in the Linux kernel\nthrough 3.12.1 allow local users to cause a denial of service (memory\ncorruption) or possibly have unspecified other impact by leveraging the\nCAP_SYS_ADMIN capability for a (1) XFS_IOC_ATTRLIST_BY_HANDLE or (2)\nXFS_IOC_ATTRLIST_BY_HANDLE_32 ioctl call with a crafted length value,\nrelated to the xfs_attrlist_by_handle function in fs/xfs/xfs_ioctl.c\nand the xfs_compat_attrlist_by_handle function in fs/xfs/xfs_ioctl32.c.\n(CVE-2013-6382)\n\nThe aac_compat_ioctl function in drivers/scsi/aacraid/linit.c in the Linux\nkernel before 3.11.8 does not require the CAP_SYS_RAWIO capability, which\nallows local users to bypass intended access restrictions via a crafted\nioctl call. (CVE-2013-6383)\n\nOther fixes:\n- xfs: add capability check to free eofblocks ioctl (CVE pending)\n- cpufreq: ondemand: Change the calculation of target frequency\n- ndiswrapper is updated to 1.59\n\nFor other -stable fixes, read the referenced changelogs.\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84],{"_key":15},"CVE-2013-0343",{"_key":17},"CVE-2013-1059",{"_key":19},"CVE-2013-2140",{"_key":21},"CVE-2013-2147",{"_key":23},"CVE-2013-2851",{"_key":25},"CVE-2013-2888",{"_key":27},"CVE-2013-2889",{"_key":29},"CVE-2013-2891",{"_key":31},"CVE-2013-2892",{"_key":33},"CVE-2013-2893",{"_key":35},"CVE-2013-2894",{"_key":37},"CVE-2013-2895",{"_key":39},"CVE-2013-2896",{"_key":41},"CVE-2013-2897",{"_key":43},"CVE-2013-2898",{"_key":45},"CVE-2013-2899",{"_key":47},"CVE-2013-2929",{"_key":49},"CVE-2013-2930",{"_key":51},"CVE-2013-4162",{"_key":53},"CVE-2013-4163",{"_key":55},"CVE-2013-4254",{"_key":57},"CVE-2013-4299",{"_key":59},"CVE-2013-4348",{"_key":61},"CVE-2013-4350",{"_key":63},"CVE-2013-4387",{"_key":65},"CVE-2013-4470",{"_key":67},"CVE-2013-4513",{"_key":69},"CVE-2013-4587",{"_key":71},"CVE-2013-6367",{"_key":73},"CVE-2013-6368",{"_key":75},"CVE-2013-6376",{"_key":77},"CVE-2013-6378",{"_key":79},"CVE-2013-6380",{"_key":81},"CVE-2013-6381",{"_key":83},"CVE-2013-6382",{"_key":85},"CVE-2013-6383",[],[],[89,90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105,106,107,108,109,110,111,112,113,114,115,116,117,118,119,120,121,122,123,124],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":69},{"_key":71},{"_key":73},{"_key":75},{"_key":77},{"_key":79},{"_key":81},{"_key":83},{"_key":85},"2013-12-17T23:24:11Z","2026-04-16T06:23:54.562622118Z",{"cisa_kev":128,"cisa_ransomware":128,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[130,136,141,146,150,154,158,162,166,170,174,178,182,186,190,194,198,202,206,210,214,218,222,226,230,234,238,242],{"url":131,"sources":132,"tags":134},"https://advisories.mageia.org/MGASA-2013-0373.html",[133],"osv_mageia",[135],"Advisory",{"url":137,"sources":138,"tags":139},"https://bugs.mageia.org/show_bug.cgi?id=11465",[133],[140],"REPORT",{"url":142,"sources":143,"tags":144},"http://kernelnewbies.org/Linux_3.9",[133],[140,145],"WEB",{"url":147,"sources":148,"tags":149},"http://kernelnewbies.org/Linux_3.10",[133],[140,145],{"url":151,"sources":152,"tags":153},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.1",[133],[140,145],{"url":155,"sources":156,"tags":157},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.2",[133],[140,145],{"url":159,"sources":160,"tags":161},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.3",[133],[140,145],{"url":163,"sources":164,"tags":165},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.4",[133],[140,145],{"url":167,"sources":168,"tags":169},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.5",[133],[140,145],{"url":171,"sources":172,"tags":173},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.6",[133],[140,145],{"url":175,"sources":176,"tags":177},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.7",[133],[140,145],{"url":179,"sources":180,"tags":181},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.8",[133],[140,145],{"url":183,"sources":184,"tags":185},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.9",[133],[140,145],{"url":187,"sources":188,"tags":189},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.10",[133],[140,145],{"url":191,"sources":192,"tags":193},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.11",[133],[140,145],{"url":195,"sources":196,"tags":197},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.12",[133],[140,145],{"url":199,"sources":200,"tags":201},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.13",[133],[140,145],{"url":203,"sources":204,"tags":205},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.14",[133],[140,145],{"url":207,"sources":208,"tags":209},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.15",[133],[140,145],{"url":211,"sources":212,"tags":213},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.16",[133],[140,145],{"url":215,"sources":216,"tags":217},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.17",[133],[140,145],{"url":219,"sources":220,"tags":221},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.18",[133],[140,145],{"url":223,"sources":224,"tags":225},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.19",[133],[140,145],{"url":227,"sources":228,"tags":229},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.20",[133],[140,145],{"url":231,"sources":232,"tags":233},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.21",[133],[140,145],{"url":235,"sources":236,"tags":237},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.22",[133],[140,145],{"url":239,"sources":240,"tags":241},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.23",[133],[140,145],{"url":243,"sources":244,"tags":245},"https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.24",[133],[140,145],[],[],[],[250],{"ecosystem":251,"name":252,"vendor":253,"product":252,"cpe_part":9,"purl_type":254,"purl_namespace":253,"purl_name":252,"source":9,"versions":255},"Mageia","kernel-tmb","mageia","rpm",[256],{"version":257,"is_range":258,"range_type":259,"version_start":9,"version_start_type":9,"version_end":260,"version_end_type":261,"fixed_in":9},"lt3_10_24_2_mga3",true,"ecosystem","3.10.24-2.mga3","excluding"]