Incorrect Length Value in crypto_report_one Function Allows Local Users to Obtain Sensitive Information from Kernel Memory

Incorrect Length Value in crypto_report_one Function Allows Local Users to Obtain Sensitive Information from Kernel Memory

CVE-2013-2548 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The crypto_report_one function in crypto/crypto_user.c in the report API in the crypto user configuration API in the Linux kernel through 3.8.2 uses an incorrect length value during a copy operation, which allows local users to obtain sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.