CVE-2013-1826 Kernel: xfrm_user: return error pointer instead of NULL

Issue

Linux kernel built with XFRM framework support is vulnerable to a NULL pointer dereference flaw. It occurs while accessing FRM state via xfrm_state_netlink routine.

A privileged (CAP_NET_ADMIN) user/program could use this flaw to crash systems, resulting in DoS.

Environment

This issue affects Red Hat Enterprise Linux (RHEL) 5 and 6.
This issue does not affect Red Hat Enterprise MRG 2.

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Here are the common uses of Markdown.

Code blocks

~~~
Code surrounded in tildes is easier to read
~~~

Links/URLs

[Red Hat Customer Portal](https://access.redhat.com)

Select Your Language

CVE-2013-1826 Kernel: xfrm_user: return error pointer instead of NULL

Issue

Environment

Subscriber exclusive content

Current Customers and Partners

New to Red Hat?

Using a Red Hat product through a public cloud?

Quick Links

Help

Site Info

Related Sites

About

Red Hat legal and privacy links

Red Hat legal and privacy links

Issue

Environment

Subscriber exclusive content

Current Customers and Partners

New to Red Hat?

Using a Red Hat product through a public cloud?

Quick Links

Help

Site Info

Related Sites

Systems Status

About

Red Hat legal and privacy links

Red Hat legal and privacy links