CVE-2013-1774

Severity

40%

Complexity

19%

Confidentiality

115%

Per https://access.redhat.com/security/cve/CVE-2013-1774 "This issue affects the version of Linux kernel as shipped with Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG 2 may address this issue."

The chase_port function in drivers/usb/serial/io_ti.c in the Linux kernel before 3.7.4 allows local users to cause a denial of service (NULL pointer dereference and system crash) via an attempted /dev/ttyUSB read or write operation on a disconnected Edgeport USB serial converter.

Per https://access.redhat.com/security/cve/CVE-2013-1774 "This issue affects the version of Linux kernel as shipped with Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG 2. Future kernel updates for Red Hat Enterprise Linux 6 and Red Hat Enterprise MRG 2 may address this issue."

CVSS 2.0 Base Score 4. CVSS Attack Vector: local. CVSS Attack Complexity: high. CVSS Vector: (AV:L/AC:H/Au:N/C:N/I:N/A:C).

Overview

First reported 11 years ago

2013-02-28 19:55:00

Last updated 5 years ago

2019-04-22 17:48:00

Affected Software

Linux Kernel 3.0 release candidate 1

3.0

Linux Kernel 3.0 release candidate 2

3.0

Linux Kernel 3.0 release candidate 3

3.0

Linux Kernel 3.0 release candidate 4

3.0

Linux Kernel 3.0 release candidate 5

3.0

Linux Kernel 3.0 release candidate 6

3.0

Linux Kernel 3.0 release candidate 7

3.0

Linux Kernel 3.0.1

3.0.1

Linux Kernel 3.0.2

3.0.2

Linux Kernel 3.0.3

3.0.3

Linux Kernel 3.0.4

3.0.4

Linux Kernel 3.0.5

3.0.5

Linux Kernel 3.0.6

3.0.6

Linux Kernel 3.0.7

3.0.7

Linux Kernel 3.0.8

3.0.8

Linux Kernel 3.0.9

3.0.9

Linux Kernel 3.0.10

3.0.10

Linux Kernel 3.0.11

3.0.11

Linux Kernel 3.0.12

3.0.12

Linux Kernel 3.0.13

3.0.13

Linux Kernel 3.0.14

3.0.14

Linux Kernel 3.0.15

3.0.15

Linux Kernel 3.0.16

3.0.16

Linux Kernel 3.0.17

3.0.17

Linux Kernel 3.0.18

3.0.18

Linux Kernel 3.0.19

3.0.19

Linux Kernel 3.0.20

3.0.20

Linux Kernel 3.0.21

3.0.21

Linux Kernel 3.0.22

3.0.22

Linux Kernel 3.0.23

3.0.23

Linux Kernel 3.0.24

3.0.24

Linux Kernel 3.0.25

3.0.25

Linux Kernel 3.0.26

3.0.26

Linux Kernel 3.0.27

3.0.27

Linux Kernel 3.0.28

3.0.28

Linux Kernel 3.0.29

3.0.29

Linux Kernel 3.0.30

3.0.30

Linux Kernel 3.0.31

3.0.31

Linux Kernel 3.0.32

3.0.32

Linux Kernel 3.0.33

3.0.33

Linux Kernel 3.0.34

3.0.34

Linux Kernel 3.0.35

3.0.35

Linux Kernel 3.0.36

3.0.36

Linux Kernel 3.0.37

3.0.37

Linux Kernel 3.0.38

3.0.38

Linux Kernel 3.0.39

3.0.39

Linux Kernel 3.0.40

3.0.40

Linux Kernel 3.0.41

3.0.41

Linux Kernel 3.0.42

3.0.42

Linux Kernel 3.0.43

3.0.43

Linux Kernel 3.0.44

3.0.44

Linux Kernel 3.1

3.1

Linux Kernel 3.1 release candidate 1

3.1

Linux Kernel 3.1 release candidate 2

3.1

Linux Kernel 3.1 release candidate 3

3.1

Linux Kernel 3.1 release candidate 4

3.1

Linux Kernel 3.1.1

3.1.1

Linux Kernel 3.1.2

3.1.2

Linux Kernel 3.1.3

3.1.3

Linux Kernel 3.1.4

3.1.4

Linux Kernel 3.1.5

3.1.5

Linux Kernel 3.1.6

3.1.6

Linux Kernel 3.1.7

3.1.7

Linux Kernel 3.1.8

3.1.8

Linux Kernel 3.1.9

3.1.9

Linux Kernel 3.1.10

3.1.10

Linux Kernel 3.2

3.2

Linux Kernel 3.2 release candidate 2

3.2

Linux Kernel 3.2 release candidate 3

3.2

Linux Kernel 3.2 release candidate 4

3.2

Linux Kernel 3.2 release candidate 5

3.2

Linux Kernel 3.2 release candidate 6

3.2

Linux Kernel 3.2 release candidate 7

3.2

Linux Kernel 3.2.1

3.2.1

Linux Kernel 3.2.2

3.2.2

Linux Kernel 3.2.3

3.2.3

Linux Kernel 3.2.4

3.2.4

Linux Kernel 3.2.5

3.2.5

Linux Kernel 3.2.6

3.2.6

Linux Kernel 3.2.7

3.2.7

Linux Kernel 3.2.8

3.2.8

Linux Kernel 3.2.9

3.2.9

Linux Kernel 3.2.10

3.2.10

Linux Kernel 3.2.11

3.2.11

Linux Kernel 3.2.12

3.2.12

Linux Kernel 3.2.13

3.2.13

Linux Kernel 3.2.14

3.2.14

Linux Kernel 3.2.15

3.2.15

Linux Kernel 3.2.16

3.2.16

Linux Kernel 3.2.17

3.2.17

Linux Kernel 3.2.18

3.2.18

Linux Kernel 3.2.19

3.2.19

Linux Kernel 3.2.20

3.2.20

Linux Kernel 3.2.21

3.2.21

Linux Kernel 3.2.22

3.2.22

Linux Kernel 3.2.23

3.2.23

Linux Kernel 3.2.24

3.2.24

Linux Kernel 3.2.25

3.2.25

Linux Kernel 3.2.26

3.2.26

Linux Kernel 3.2.27

3.2.27

Linux Kernel 3.2.28

3.2.28

Linux Kernel 3.2.29

3.2.29

Linux Kernel 3.2.30

3.2.30

Linux Kernel 3.3

3.3

Linux Kernel 3.3 release candidate 1

3.3

Linux Kernel 3.3 release candidate 2

3.3

Linux Kernel 3.3 release candidate 3

3.3

Linux Kernel 3.3 release candidate 4

3.3

Linux Kernel 3.3 release candidate 5

3.3

Linux Kernel 3.3 release candidate 6

3.3

Linux Kernel 3.3 release candidate 7

3.3

Linux Kernel 3.3.1

3.3.1

Linux Kernel 3.3.2

3.3.2

Linux Kernel 3.3.3

3.3.3

Linux Kernel 3.3.4

3.3.4

Linux Kernel 3.3.5

3.3.5

Linux Kernel 3.3.6

3.3.6

Linux Kernel 3.3.7

3.3.7

Linux Kernel 3.3.8

3.3.8

Linux Kernel 3.4

3.4

Linux Kernel 3.4 release candidate 1

3.4

Linux Kernel 3.4 release candidate 2

3.4

Linux Kernel 3.4 release candidate 3

3.4

Linux Kernel 3.4 release candidate 4

3.4

Linux Kernel 3.4 release candidate 5

3.4

Linux Kernel 3.4 release candidate 6

3.4

Linux Kernel 3.4 release candidate 7

3.4

Linux Kernel 3.4.1

3.4.1

Linux Kernel 3.4.2

3.4.2

Linux Kernel 3.4.3

3.4.3

Linux Kernel 3.4.4

3.4.4

Linux Kernel 3.4.5

3.4.5

Linux Kernel 3.4.6

3.4.6

Linux Kernel 3.4.7

3.4.7

Linux Kernel 3.4.8

3.4.8

Linux Kernel 3.4.9

3.4.9

Linux Kernel 3.4.10

3.4.10

Linux Kernel 3.4.11

3.4.11

Linux Kernel 3.4.12

3.4.12

Linux Kernel 3.4.13

3.4.13

Linux Kernel 3.4.14

3.4.14

Linux Kernel 3.4.15

3.4.15

Linux Kernel 3.4.16

3.4.16

Linux Kernel 3.4.17

3.4.17

Linux Kernel 3.4.18

3.4.18

Linux Kernel 3.4.19

3.4.19

Linux Kernel 3.4.20

3.4.20

Linux Kernel 3.4.21

3.4.21

Linux Kernel 3.4.22

3.4.22

Linux Kernel 3.4.23

3.4.23

Linux Kernel 3.4.24

3.4.24

Linux Kernel 3.5.1

3.5.1

Linux Kernel 3.5.2

3.5.2

Linux Kernel 3.5.3

3.5.3

Linux Kernel 3.5.4

3.5.4

Linux Kernel 3.5.5

3.5.5

Linux Kernel 3.5.6

3.5.6

Linux Kernel 3.5.7

3.5.7

Linux Kernel 3.6

3.6

Linux Kernel 3.6.1

3.6.1

Linux Kernel 3.6.2

3.6.2

Linux Kernel 3.6.3

3.6.3

Linux Kernel 3.6.4

3.6.4

Linux Kernel 3.6.5

3.6.5

Linux Kernel 3.6.6

3.6.6

Linux Kernel 3.6.7

3.6.7

Linux Kernel 3.6.8

3.6.8

Linux Kernel 3.6.9

3.6.9

Linux Kernel 3.6.10

3.6.10

Linux Kernel 3.6.11

3.6.11

Linux Kernel 3.7

3.7

Linux Kernel 3.7.1

3.7.1

Linux Kernel 3.7.2

3.7.2

Linux Kernel

RedHat Enterprise MRG 2.0

2.0

Red Hat Enterprise Linux 6.0

6.0

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1ee0a224bc9aad1de496c795f96bc6ba2c394811

openSUSE-SU-2013:0847

openSUSE-SU-2013:0925

SUSE-SU-2013:1182

SUSE-SU-2013:1474

RHSA-2013:0744

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.7.4

[oss-security] 20130227 Re: CVE request: Linux kernel: USB: io_ti: NULL pointer dereference

USN-1805-1

USN-1808-1

http://xorl.wordpress.com/2013/05/18/cve-2013-1774-linux-kernel-edgeport-usb-serial-converter-null-pointer-dereference/

https://bugzilla.redhat.com/show_bug.cgi?id=916191

https://github.com/torvalds/linux/commit/1ee0a224bc9aad1de496c795f96bc6ba2c394811

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.