[Secure-testing-team] Bug#706557: open-vm-tools: CVE-2013-3237

Salvatore Bonaccorso carnil at debian.org
Wed May 1 14:53:25 UTC 2013


Source: open-vm-tools
Version: 1:8.4.2-261024-1
Severity: important
Tags: security patch

Hi

Recently linux introduced VM Sockets. It was found the following
vulnerability, which looks also affecting af_vsock.c in open-vm-tools:

CVE-2013-3237[0]:
| The vsock_stream_sendmsg function in net/vmw_vsock/af_vsock.c in the
| Linux kernel before 3.9-rc7 does not initialize a certain length
| variable, which allows local users to obtain sensitive information
| from kernel stack memory via a crafted recvmsg or recvfrom system
| call.

The commit for linux against net/vmw_vsock/af_vsock.c is at [1].

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3237
    http://security-tracker.debian.org/tracker/CVE-2013-3237
[1] http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=d5e0d0f607a7a029c6563a0470d88255c89a8d11

Regards,
Salvatore



More information about the Secure-testing-team mailing list