Linux Kernel Improper Input Validation Vulnerability

NVD

Known Exploited Vulnerability

CVE-2013-6282, Linux Kernel Improper Input Validation Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. The get_user and put_user API functions of the Linux kernel fail to validate the target address when being used on ARM v6k/v7 platforms. This allows an application to read and write kernel memory which could lead to privilege escalation.

The following remediation steps are recommended / required by October 6, 2022: Apply updates per vendor instructions.