製品・ソフトウェアに関する情報

JVN脆弱性詳細

Linux Kernel の rio_ioctl 関数における Ethernet アダプタへデータを書き込まれる脆弱性

Title	Linux Kernel の rio_ioctl 関数における Ethernet アダプタへデータを書き込まれる脆弱性
Summary	Linux Kernel の drivers/net/ethernet/dlink/dl2k.c 内の rio_ioctl 関数は、SIOCSMIIREG コマンドへのアクセスを制限しないため、Ethernet アダプタへデータを書き込まれる脆弱性が存在します。
Possible impacts	ローカルユーザにより、ioctl コールを介して、Ethernet アダプタへデータを書き込まれる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	June 13, 2012, midnight
Registration Date	June 15, 2012, 2:52 p.m.
Last Update	Dec. 25, 2012, 5:46 p.m.

CVSS2.0 : 注意
Score	1.2
Vector	AV:L/AC:H/Au:N/C:N/I:N/A:P

Affected System

Linux

Linux Kernel 3.3.7 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2012-2313	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2313
National Vulnerability Database (NVD)
2	CVE-2012-2313	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2313

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-264	https://jvndb.jvn.jp/ja/cwe/CWE-264.html

ベンダー情報

No	Name	URL
ChangeLog
1	ChangeLog-3.3.7	http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.7
GitHub
2	dl2k: Clean up rio_ioctl	https://github.com/torvalds/linux/commit/1bb57e940e1958e40d51f2078f50c3a96a9b2d75
Linux Kernel
3	Linux Kernel Archives	http://www.kernel.org
4	linux/kernel/git/torvalds/linux-2.6.git / commit	http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1bb57e940e1958e40d51f2078f50c3a96a9b2d75
Red Hat Bugzilla
5	Bug 818820	https://bugzilla.redhat.com/show_bug.cgi?id=818820
Red Hat Security Advisory
6	RHSA-2012:1174	http://rhn.redhat.com/errata/RHSA-2012-1174.html
7	RHSA-2012:1481	http://rhn.redhat.com/errata/RHSA-2012-1481.html
8	RHSA-2012:1589	http://rhn.redhat.com/errata/RHSA-2012-1589.html

Change Log

No	Changed Details	Date of change
0	[2012年06月15日] 掲載 [2012年11月16日] ベンダ情報：レッドハット (RHSA-2012:1174) を追加 [2012年12月25日] ベンダ情報：レッドハット (RHSA-2012:1481) を追加ベンダ情報：レッドハット (RHSA-2012:1589) を追加	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2012-2313

Summary	The rio_ioctl function in drivers/net/ethernet/dlink/dl2k.c in the Linux kernel before 3.3.7 does not restrict access to the SIOCSMIIREG command, which allows local users to write data to an Ethernet adapter via an ioctl call.
Publication Date	June 13, 2012, 7:24 p.m.
Registration Date	Jan. 28, 2021, 2:57 p.m.
Last Update	Nov. 21, 2024, 10:38 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:linux:linux_kernel:3.3:rc4::::::
cpe:2.3:o:linux:linux_kernel:3.3:rc5::::::
cpe:2.3:o:linux:linux_kernel:3.3:rc3::::::
cpe:2.3:o:linux:linux_kernel:3.3.2:::::::*
cpe:2.3:o:linux:linux_kernel:3.3.3:::::::*
cpe:2.3:o:linux:linux_kernel:3.3:rc2::::::
cpe:2.3:o:linux:linux_kernel::::::::		3.3.6
cpe:2.3:o:linux:linux_kernel:3.3.4:::::::*
cpe:2.3:o:linux:linux_kernel:3.3.5:::::::*
cpe:2.3:o:linux:linux_kernel:3.3:rc6::::::
cpe:2.3:o:linux:linux_kernel:3.3:rc1::::::
cpe:2.3:o:linux:linux_kernel:3.3:::::::*
cpe:2.3:o:linux:linux_kernel:3.3:rc7::::::
cpe:2.3:o:linux:linux_kernel:3.3.1:::::::*

Configuration2		or higher	or less	more than	less than
cpe:2.3:o:novell:suse_linux_enterprise_server:10.0:sp4:::ltss:::*

Configuration3	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux:5::server:::::
cpe:2.3:o:redhat:enterprise_linux_server_aus:6.2:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:6.2.z:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0::client:::::
cpe:2.3:o:redhat:enterprise_linux_server_eus:6.1.z:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:5.6.z::server:::::
cpe:2.3:o:redhat:enterprise_linux_long_life:5.6::server:::::

Related information, measures and tools

No	URL	タグ
1	http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1bb57e940e1958e40d51f2078f50c3a96a9b2d75
2	http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1bb57e940e1958e40d51f2078f50c3a96a9b2d75
3	http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html	Third Party Advisory
4	http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html	Third Party Advisory
5	http://marc.info/?l=bugtraq&m=139447903326211&w=2	Third Party Advisory
6	http://marc.info/?l=bugtraq&m=139447903326211&w=2	Third Party Advisory
7	http://rhn.redhat.com/errata/RHSA-2012-1174.html	Third Party Advisory
8	http://rhn.redhat.com/errata/RHSA-2012-1174.html	Third Party Advisory
9	http://rhn.redhat.com/errata/RHSA-2012-1481.html	Third Party Advisory
10	http://rhn.redhat.com/errata/RHSA-2012-1481.html	Third Party Advisory
11	http://rhn.redhat.com/errata/RHSA-2012-1541.html	Third Party Advisory
12	http://rhn.redhat.com/errata/RHSA-2012-1541.html	Third Party Advisory
13	http://rhn.redhat.com/errata/RHSA-2012-1589.html	Third Party Advisory
14	http://rhn.redhat.com/errata/RHSA-2012-1589.html	Third Party Advisory
15	http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.7	Release Notes
16	http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.7	Release Notes
17	http://www.openwall.com/lists/oss-security/2012/05/04/8	Mailing List
18	http://www.openwall.com/lists/oss-security/2012/05/04/8	Mailing List
19	http://www.securityfocus.com/bid/53965	Third Party Advisory VDB Entry
20	http://www.securityfocus.com/bid/53965	Third Party Advisory VDB Entry
21	https://bugzilla.redhat.com/show_bug.cgi?id=818820	Issue Tracking
22	https://bugzilla.redhat.com/show_bug.cgi?id=818820	Issue Tracking
23	https://github.com/torvalds/linux/commit/1bb57e940e1958e40d51f2078f50c3a96a9b2d75	Exploit Patch
24	https://github.com/torvalds/linux/commit/1bb57e940e1958e40d51f2078f50c3a96a9b2d75	Exploit Patch

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-264	認可・権限・アクセス制御	https://cwe.mitre.org/data/definitions/264.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:linux:linux_kernel:3.3:rc4::::::
cpe:2.3:o:linux:linux_kernel:3.3:rc5::::::
cpe:2.3:o:linux:linux_kernel:3.3:rc3::::::
cpe:2.3:o:linux:linux_kernel:3.3.2:::::::*
cpe:2.3:o:linux:linux_kernel:3.3.3:::::::*
cpe:2.3:o:linux:linux_kernel:3.3:rc2::::::
cpe:2.3:o:linux:linux_kernel::::::::		3.3.6
cpe:2.3:o:linux:linux_kernel:3.3.4:::::::*
cpe:2.3:o:linux:linux_kernel:3.3.5:::::::*
cpe:2.3:o:linux:linux_kernel:3.3:rc6::::::
cpe:2.3:o:linux:linux_kernel:3.3:rc1::::::
cpe:2.3:o:linux:linux_kernel:3.3:::::::*
cpe:2.3:o:linux:linux_kernel:3.3:rc7::::::
cpe:2.3:o:linux:linux_kernel:3.3.1:::::::*

Configuration3	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux:5::server:::::
cpe:2.3:o:redhat:enterprise_linux_server_aus:6.2:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_eus:6.2.z:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0::client:::::
cpe:2.3:o:redhat:enterprise_linux_server_eus:6.1.z:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:5.6.z::server:::::
cpe:2.3:o:redhat:enterprise_linux_long_life:5.6::server:::::