CVE-2013-1928 — Sensitive Information Exposure in Linux

CWE-200 — Sensitive Information Exposure CWE-20 — Improper Input Validation20 documents8 sources

Severity

4.7MEDIUMNVD

GHSA7.5

EPSS

0.1%

top 71.67%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Python-gnupg Project Python-gnupg Debian Linux +1 more

Timeline

PublishedApr 29

Latest updateMay 14

Description

The do_video_set_spu_palette function in fs/compat_ioctl.c in the Linux kernel before 3.6.5 on unspecified architectures lacks a certain error check, which might allow local users to obtain sensitive information from kernel stack memory via a crafted VIDEO_SET_SPU_PALETTE ioctl call on a /dev/dvb device.

CVSS vector

AV:L/AC:M/C:C/I:N/A:NExploitability: 3.4 | Impact: 6.9

Affected Packages4 packages

▶Debianlinux/linux_kernel< 3.2.35-1+3

▶NVDlinux/linux_kernel3.6.4+164

▶debiandebian/linux< linux 3.2.35-1 (bookworm)

▶PyPIpython-gnupg_project/python-gnupg0.3.5 — 0.3.6

Also affects: Enterprise Linux 6.0

🔴Vulnerability Details

GHSA

GHSA-fj24-32r9-v783: The do_video_set_spu_palette function in fs/compat_ioctl↗2022-05-14

▶

GHSA

python-gnupg's shell_quote function does not properly quote strings↗2018-11-06

▶

GHSA

python-gnupg's shell_quote function does not properly escape characters↗2018-11-06

▶

OSV

CVE-2013-1928: The do_video_set_spu_palette function in fs/compat_ioctl↗2013-04-29

▶

📋Vendor Advisories

Ubuntu

Linux kernel (EC2) vulnerabilities↗2013-05-16

▶

Ubuntu

Linux kernel vulnerabilities↗2013-05-15

▶

Ubuntu

Linux kernel (Quantal HWE) vulnerabilities↗2013-01-22

▶

Debian

CVE-2013-1928: linux - The do_video_set_spu_palette function in fs/compat_ioctl.c in the Linux kernel b...↗2013

▶

Ubuntu

Linux kernel vulnerability↗2012-12-19

▶

💬Community

Bugzilla

CVE-2013-7323 CVE-2014-1927 CVE-2014-1928 CVE-2014-1929 python-gnupg: incorrect fix against shell injection↗2014-02-05

▶

Bugzilla

CVE-2013-1928 Kernel: information leak in fs/compat_ioctl.c VIDEO_SET_SPU_PALETTE↗2013-04-08

▶

Bugzilla

CVE-2013-0401 OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)↗2013-03-11

▶