Linux Kernel CVE Statistics
12 Linux Kernel CVEs in December 2013
Full month · Source: NIST NVD
In December 2013, 12 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 1 was rated High severity and 8 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. December's 12 CVEs represent 6% of all 2013 Linux kernel CVEs , down from November's 26 (a 54% month-over-month decrease) .
12
Total CVEs
0
Critical
1
High
8
Medium
3
Low
0
KEV Exploited
All CVEs — December 2013
12 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2013-4587 | linux | High | 7.2 | 2013-12-14 | Array index error in the kvm_vm_ioctl_create_vcpu function in virt/kvm/kvm_main.c in the KVM subsystem in the Linux ker… | |
| CVE-2013-6368 | linux | Medium | 6.2 | 2013-12-14 | The KVM subsystem in the Linux kernel through 3.12.5 allows local users to gain privileges or cause a denial of service… | |
| CVE-2013-7027 | linux | Medium | 6.1 | 2013-12-09 | The ieee80211_radiotap_iterator_init function in net/wireless/radiotap.c in the Linux kernel before 3.11.7 does not che… | |
| CVE-2013-6367 | linux | Medium | 5.7 | 2013-12-14 | The apic_get_tmcct function in arch/x86/kvm/lapic.c in the KVM subsystem in the Linux kernel through 3.12.5 allows gues… | |
| CVE-2011-2519 | linux | Medium | 5.5 | 2013-12-27 | Xen in the Linux kernel, when running a guest on a host without hardware assisted paging (HAP), allows guest users to c… | |
| CVE-2013-6376 | linux | Medium | 5.2 | 2013-12-14 | The recalculate_apic_map function in arch/x86/kvm/lapic.c in the KVM subsystem in the Linux kernel through 3.12.5 allow… | |
| CVE-2013-6431 | linux | Medium | 4.7 | 2013-12-09 | The fib6_add function in net/ipv6/ip6_fib.c in the Linux kernel before 3.11.5 does not properly implement error-code en… | |
| CVE-2013-7026 | linux | Medium | 4.7 | 2013-12-09 | Multiple race conditions in ipc/shm.c in the Linux kernel before 3.12.2 allow local users to cause a denial of service … | |
| CVE-2013-6432 | linux | Medium | 4.6 | 2013-12-09 | The ping_recvmsg function in net/ipv4/ping.c in the Linux kernel before 3.12.4 does not properly interact with read sys… | |
| CVE-2013-4270 | linux | Low | 3.6 | 2013-12-09 | The net_ctl_permissions function in net/sysctl_net.c in the Linux kernel before 3.11.5 does not properly determine uid … | |
| CVE-2013-2930 | linux | Low | 3.6 | 2013-12-09 | The perf_trace_event_perm function in kernel/trace/trace_event_perf.c in the Linux kernel before 3.12.2 does not proper… | |
| CVE-2013-2929 | linux | Low | 3.3 | 2013-12-09 | The Linux kernel before 3.12.2 does not properly use the get_dumpable function, which allows local users to bypass inte… |