CVE-2012-2313

Published: Jun 13, 2012Modified: Apr 29, 2026

1.2

Vector

AV:L/AC:H/Au:N/C:N/I:N/A:P

Exploitability: 1.9 / Impact: 2.9

Source: NVD

Description

The rio_ioctl function in drivers/net/ethernet/dlink/dl2k.c in the Linux kernel before 3.3.7 does not restrict access to the SIOCSMIIREG command, which allows local users to write data to an Ethernet adapter via an ioctl call.

Affected (22)

Products: Linux: Linux Kernel · Novell: Suse Linux Enterprise Server · Redhat: Enterprise Linux, Enterprise Linux Desktop, Enterprise Linux Eus, Enterprise Linux Long Life, Enterprise Linux Server Aus, Enterprise Linux Server Eus

1 product

1 product

Suse Linux Enterprise Server

6 products

Enterprise Linux

Enterprise Linux Desktop

Enterprise Linux Eus

Enterprise Linux Long Life

Enterprise Linux Server Aus

Enterprise Linux Server Eus

Configuration A

14 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Up to 3.3.6
Linux Linux Kernel	Version 3.3.1
Linux Linux Kernel	Version 3.3.2
Linux Linux Kernel	Version 3.3.3
Linux Linux Kernel	Version 3.3.4
Linux Linux Kernel	Version 3.3.5
Linux Linux Kernel	Version 3.3
Linux Linux Kernel	Version 3.3 rc1
Linux Linux Kernel	Version 3.3 rc2
Linux Linux Kernel	Version 3.3 rc3
Linux Linux Kernel	Version 3.3 rc4
Linux Linux Kernel	Version 3.3 rc5
Linux Linux Kernel	Version 3.3 rc6
Linux Linux Kernel	Version 3.3 rc7

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Novell Suse Linux Enterprise Server	Version 10.0 sp4

Configuration C

7 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 5
Redhat Enterprise Linux Desktop	Version 5.0
Redhat Enterprise Linux Eus	Version 5.6.z
Redhat Enterprise Linux Long Life	Version 5.6
Redhat Enterprise Linux Server Aus	Version 6.2
Redhat Enterprise Linux Server Eus	Version 6.1.z
Redhat Enterprise Linux Server Eus	Version 6.2.z

Related CWEs

References (24)

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1bb57e940e1958e40d51f2078f50c3a96a9b2d75

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html

Source: secalert@redhat.com

Third Party Advisory

http://marc.info/?l=bugtraq&m=139447903326211&w=2

Source: secalert@redhat.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1174.html

Source: secalert@redhat.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1481.html

Source: secalert@redhat.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1541.html

Source: secalert@redhat.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1589.html

Source: secalert@redhat.com

Third Party Advisory

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.7

Source: secalert@redhat.com

Release Notes

http://www.openwall.com/lists/oss-security/2012/05/04/8

Source: secalert@redhat.com

Mailing List

http://www.securityfocus.com/bid/53965

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

https://bugzilla.redhat.com/show_bug.cgi?id=818820

Source: secalert@redhat.com

Issue Tracking

https://github.com/torvalds/linux/commit/1bb57e940e1958e40d51f2078f50c3a96a9b2d75

Source: secalert@redhat.com

ExploitPatch

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1bb57e940e1958e40d51f2078f50c3a96a9b2d75

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://marc.info/?l=bugtraq&m=139447903326211&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1174.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1481.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1541.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2012-1589.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.7

Source: af854a3a-2127-422b-91ae-364da2661108

Release Notes

http://www.openwall.com/lists/oss-security/2012/05/04/8

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

http://www.securityfocus.com/bid/53965

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://bugzilla.redhat.com/show_bug.cgi?id=818820

Source: af854a3a-2127-422b-91ae-364da2661108

Issue Tracking

https://github.com/torvalds/linux/commit/1bb57e940e1958e40d51f2078f50c3a96a9b2d75

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatch

Timeline

No history available yet.