Unrated severityNVD Advisory· Published Sep 25, 2013· Updated Apr 29, 2026
CVE-2013-4343
CVE-2013-4343
Description
Use-after-free vulnerability in drivers/net/tun.c in the Linux kernel through 3.11.1 allows local users to gain privileges by leveraging the CAP_NET_ADMIN capability and providing an invalid tuntap interface name in a TUNSETIFF ioctl call.
Affected products
9cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
- osv-coords6 versionspkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3
< 4.4.180-4.31.1+ 5 more
- (no CPE)range: < 4.4.180-4.31.1
- (no CPE)range: < 4.4.180-4.31.1
- (no CPE)range: < 4.4.180-4.31.1
- (no CPE)range: < 4.4.180-4.31.1
- (no CPE)range: < 4.4.180-4.31.1
- (no CPE)range: < 4.4.180-4.31.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- lists.opensuse.org/opensuse-security-announce/2019-05/msg00071.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2019-06/msg00039.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2019-06/msg00048.htmlnvdMailing ListThird Party Advisory
- marc.infonvdMailing ListThird Party Advisory
- rhn.redhat.com/errata/RHSA-2013-1490.htmlnvdThird Party Advisory
- www.openwall.com/lists/oss-security/2013/09/12/3nvdMailing ListThird Party Advisory
- www.spinics.net/lists/netdev/msg250066.htmlnvdThird Party Advisory
- www.ubuntu.com/usn/USN-2020-1nvdThird Party Advisory
- www.ubuntu.com/usn/USN-2023-1nvdThird Party Advisory
- www.ubuntu.com/usn/USN-2049-1nvdThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.