CVE-2013-1979 — MEDIUM (6.9)

Q: How severe is CVE-2013-1979?

CVE-2013-1979 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2013-1979?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.

Vulnerability Description

The scm_set_cred function in include/net/scm.h in the Linux kernel before 3.8.11 uses incorrect uid and gid values during credentials passing, which allows local users to gain privileges via a crafted application.

CVSS Score

6.9

MEDIUM

AV:L/AC:M/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	<= 3.8.10

Related Weaknesses (CWE)

CWE-264

References

FAQ

What is CVE-2013-1979?

CVE-2013-1979 is a vulnerability with a CVSS score of 6.9 (MEDIUM). The scm_set_cred function in include/net/scm.h in the Linux kernel before 3.8.11 uses incorrect uid and gid values during credentials passing, which allows local users to gain privileges via a crafted...

How severe is CVE-2013-1979?

CVE-2013-1979 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-1979?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.