{"id":"CVE-2013-6382","details":"Multiple buffer underflows in the XFS implementation in the Linux kernel through 3.12.1 allow local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging the CAP_SYS_ADMIN capability for a (1) XFS_IOC_ATTRLIST_BY_HANDLE or (2) XFS_IOC_ATTRLIST_BY_HANDLE_32 ioctl call with a crafted length value, related to the xfs_attrlist_by_handle function in fs/xfs/xfs_ioctl.c and the xfs_compat_attrlist_by_handle function in fs/xfs/xfs_ioctl32.c.","modified":"2026-04-16T06:21:36.846676850Z","published":"2013-11-27T04:43:33Z","related":["SUSE-RU-2015:0621-1","SUSE-SU-2015:0481-1","SUSE-SU-2015:0581-1","SUSE-SU-2015:0652-1","SUSE-SU-2015:0736-1","SUSE-SU-2015:1174-1","SUSE-SU-2015:1376-1"],"references":[{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2109-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2110-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2113-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2117-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2128-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2129-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2135-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2138-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2139-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2141-1"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2158-1"},{"type":"EVIDENCE","url":"http://www.spinics.net/lists/xfs/msg23343.html"},{"type":"FIX","url":"http://www.spinics.net/lists/xfs/msg23343.html"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1033603"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2013/11/22/5"},{"type":"WEB","url":"http://www.securityfocus.com/bid/63889"}],"schema_version":"1.7.5"}