{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"low"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2013-2547","title":"Title"},{"category":"description","text":"The crypto_report_one function in crypto/crypto_user.c in the report API in the crypto user configuration API in the Linux kernel through 3.8.2 does not initialize certain structure members, which allows local users to obtain sensitive information from kernel heap memory by leveraging the CAP_NET_ADMIN capability.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2013-2547","url":"https://www.suse.com/security/cve/CVE-2013-2547"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1118428 for CVE-2013-2547","url":"https://bugzilla.suse.com/1118428"},{"category":"external","summary":"SUSE Bug 809906 for CVE-2013-2547","url":"https://bugzilla.suse.com/809906"}],"title":"SUSE CVE CVE-2013-2547","tracking":{"current_release_date":"2023-12-08T04:56:27Z","generator":{"date":"2023-02-15T05:38:19Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2013-2547","initial_release_date":"2023-02-15T05:38:19Z","revision_history":[{"date":"2023-02-15T05:38:19Z","number":"2","summary":"Current version"},{"date":"2023-12-08T04:56:27Z","number":"3","summary":"Current version"}],"status":"interim","version":"3"}}}