Unrated severityNVD Advisory· Published Nov 4, 2013· Updated Jun 16, 2026

CVE-2013-4348

Description

The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of a packet with IPIP encapsulation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Canonical/Ubuntu Linux2 versions
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*+ 1 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
Linux/Kernel
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Range: >=3.2,<3.2.54
Linux/Linux kernelllm-fuzzy
Range: <=3.12

Patches

Vulnerability mechanics

References

git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/nvdExploitPatchVendor Advisory
lists.opensuse.org/opensuse-security-announce/2014-02/msg00002.htmlnvdMailing ListThird Party Advisory
rhn.redhat.com/errata/RHSA-2013-1490.htmlnvdThird Party Advisory
www.ubuntu.com/usn/USN-2070-1nvdThird Party Advisory
www.ubuntu.com/usn/USN-2075-1nvdThird Party Advisory
bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.008
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000