Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 475738 (CVE-2013-2237) - Kernel : net: af_key: initialize satype in key_notify_policy_flush (CVE-2013-2237)
Summary: Kernel : net: af_key: initialize satype in key_notify_policy_flush (CVE-2013-...
Alias: CVE-2013-2237
Product: Gentoo Security
Classification: Unclassified
Component: Kernel (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Kernel Security
Depends on:
Reported: 2013-07-04 12:17 UTC by Agostino Sarubbo
Modified: 2022-03-25 15:26 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Agostino Sarubbo gentoo-dev 2013-07-04 12:17:55 UTC
From ${URL} :

Linux kernel built with the IPSec key_socket support(CONFIG_NET_KEY=m) is
vulnerable to an information leakage flaw. It occurs while using key_socket's
notify_policy interface.

A user/program able to access the PF_KEY key_sockets could use this flaw to
leak kernel memory bytes.

Upstream fix:

Comment 1 Tom Wijsman (TomWij) (RETIRED) gentoo-dev 2013-07-04 12:40:21 UTC
 $ git tag --contains 85dfb745ee40232876663ae206cba35f24ab2a40 | grep -v rc | xargs echo
v3.10 v3.9 v3.9.1 v3.9.2 v3.9.3 v3.9.4 v3.9.5 v3.9.6 v3.9.7 v3.9.8 v3.9.9

Already present in branches 3.9 and 3.10, added to genpatches for 3.0, 3.2, 3.4.

r2435 | tomwij | 2013-07-04 14:39:53 +0200 (Thu, 04 Jul 2013) | 1 line

Applied vulnerable af_key uninitialized field fix to avoid information leakage for bug #475738 to branches 3.0, 3.2 and 3.4.
Comment 2 GLSAMaker/CVETool Bot gentoo-dev 2013-08-30 01:10:35 UTC
CVE-2013-2237 (
  The key_notify_policy_flush function in net/key/af_key.c in the Linux kernel
  before 3.9 does not initialize a certain structure member, which allows
  local users to obtain sensitive information from kernel heap memory by
  reading a broadcast message from the notify_policy interface of an IPSec
Comment 3 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-03-25 15:26:09 UTC
Fix in 3.4.59 onward