Unrated severityNVD Advisory· Published May 3, 2013· Updated Apr 29, 2026
CVE-2013-1979
CVE-2013-1979
Description
The scm_set_cred function in include/net/scm.h in the Linux kernel before 3.8.11 uses incorrect uid and gid values during credentials passing, which allows local users to gain privileges via a crafted application.
Affected products
20cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: <=3.8.10
- cpe:2.3:o:linux:linux_kernel:3.8.0:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.8.1:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.8.2:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.8.3:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.8.4:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.8.5:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.8.6:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.8.7:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.8.8:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.8.9:*:*:*:*:*:*:*
- osv-coords9 versionspkg:rpm/suse/kernel-bigmem&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSSpkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSSpkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSSpkg:rpm/suse/kernel-ppc64&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSSpkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSSpkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS
< 3.0.101-108.90.1+ 8 more
- (no CPE)range: < 3.0.101-108.90.1
- (no CPE)range: < 3.0.101-108.90.1
- (no CPE)range: < 3.0.101-108.90.1
- (no CPE)range: < 3.0.101-108.90.1
- (no CPE)range: < 3.0.101-108.90.1
- (no CPE)range: < 3.0.101-108.90.1
- (no CPE)range: < 3.0.101-108.90.1
- (no CPE)range: < 3.0.101-108.90.1
- (no CPE)range: < 3.0.101-108.90.1
Patches
183f1b4ba917dVulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
13- git.kernel.orgnvd
- lists.fedoraproject.org/pipermail/package-announce/2013-April/103750.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2013-May/104480.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2013-07/msg00016.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2013-07/msg00018.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.htmlnvd
- lists.opensuse.org/opensuse-updates/2013-12/msg00129.htmlnvd
- www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.11nvd
- www.mandriva.com/security/advisoriesnvd
- www.openwall.com/lists/oss-security/2013/04/29/1nvd
- bugzilla.redhat.com/show_bug.cginvd
- github.com/torvalds/linux/commit/83f1b4ba917db5dc5a061a44b3403ddb6e783494nvd
News mentions
0No linked articles in our index yet.