fs/ext3/super.c in the Linux kernel before 3.8.4 uses incorrect arguments to functions in certain circumstances related to printk input, which allows local users to conduct format-string attacks and possibly gain privileges via a crafted application.
Platform | Package | Release Date | Advisory |
---|---|---|---|
Amazon Linux 1 | kernel | 2013-08-13 21:32 | ALAS-2013-218 |
Score Type | Score | Vector | |
---|---|---|---|
Amazon Linux | CVSSv2 | 6.0 | AV:L/AC:H/Au:S/C:C/I:C/A:C |
NVD | CVSSv2 | 6.2 | AV:L/AC:H/Au:N/C:C/I:C/A:C |