The perf_swevent_init function in kernel/events/core.c in the Linux kernel before 3.8.9 uses an incorrect integer data type, which allows local users to gain privileges via a crafted perf_event_open system call.
Loading...
Loading...
Score elevated to 9.0 because this CVE is listed on the CISA Known Exploited Vulnerabilities catalog (added 2022-09-15), indicating real-world exploitation has been confirmed by US federal agencies. NVD baseline CVSS 8.4 retained for reference. Confidence: HIGH.
The perf_swevent_init function in kernel/events/core.c in the Linux kernel before 3.8.9 uses an incorrect integer data type, which allows local users to gain privileges via a crafted perf_event_open system call.
May 14, 2013
April 22, 2026
| Vendor / Ecosystem | Fixed in / Patch | Released | Source |
|---|---|---|---|
| ubuntu | linux-image-3.5.0-30-generic (3.5.0-30.51~precise1) @ precise | 2026-06-03 | ubuntu |
| ubuntu | linux-image-3.8.0-21-generic (3.8.0-21.32) @ raring | 2026-06-03 | ubuntu |
| ubuntu | linux-image-3.5.0-225-omap4 (3.5.0-225.36) @ raring | 2026-06-03 | ubuntu |
| ubuntu | linux-image-3.5.0-30-powerpc64-smp (3.5.0-30.51) @ quantal | 2026-06-03 | ubuntu |
| ubuntu | linux-image-3.2.0-43-generic (3.2.0-43.68) @ precise | 2026-06-03 | ubuntu |
| ubuntu | linux-image-3.8.0-23-generic (3.8.0-23.34~precise1) @ precise | 2026-06-03 | ubuntu |
| ubuntu | linux-image-3.2.0-1432-omap4 (3.2.0-1432.41) @ precise | 2026-06-03 | ubuntu |
| ubuntu | linux-image-3.5.0-225-omap4 (3.5.0-225.36) @ quantal | 2026-06-03 | ubuntu |
| redhat | kernel-rt-0:3.6.11.2-rt33.39.el6rt | 2013-05-20 | redhat |
| redhat | kernel-0:2.6.32-131.39.1.el6 | 2013-05-20 | redhat |
| redhat | kernel-0:2.6.32-220.34.2.el6 | 2013-05-20 | redhat |
| redhat | kernel-0:2.6.32-279.25.2.el6 | 2013-05-17 | redhat |
| redhat | kernel-0:2.6.32-358.6.2.el6 | 2013-05-16 | redhat |
Patches are aggregated from vendor advisories (Red Hat, Microsoft, Cisco, GitHub) and package ecosystems (OSV, GHSA). Multiple rows for the same upstream release have been deduplicated.
Every vendor that published an advisory referencing this CVE — pulled from our cve_vendor_advisories aggregation. Click any row for the vendor's original advisory page.
The perf_swevent_init function in kernel/events/core.c in the Linux kernel before 3.8.9 uses an incorrect integer data type which allows local users to gain privileges via a crafted perf_event_open system call.
RHSA-2013:0829 — Important
RHSA-2013:0830 — Important
RHSA-2013:0832 — Important
RHSA-2013:0840 — Important
RHSA-2013:0841 — Important
Linux kernel vulnerability
Linux kernel vulnerability
Linux kernel vulnerability
Linux kernel (Quantal HWE) vulnerability
Linux kernel (OMAP4) vulnerabilities
Linux kernel (OMAP4) vulnerabilities
Linux kernel (OMAP4) vulnerabilities
Linux kernel (Raring HWE) vulnerability
Every time one of our enrichment pipelines (NVD, MITRE cvelistV5, EPSS, CISA KEV, GHSA, OSV, vendor advisories) ran against this CVE. Most recent first.
Working exploit code is in the public domain (4 GitHub PoCs) (3 Exploit-DB entries). Defenders should treat patch urgency accordingly — public PoCs typically lead to mass-exploitation within 24-72 hours.
CVE-2013-2094 kernel exploit for i386
Open source ↗Linux Kernel 3.2.0-23/3.5.0-23 (Ubuntu 12.04/12.04.1/12.04.2 x64) - 'perf_swevent_init' Local Privilege Escalation (3)
Open source ↗CVE-2013-2094 Linux 2.6.32/2.6.37 - 3.8.10 PERF_EVENTS local root x86/x86_64
Open source ↗Linux Kernel < 3.8.9 (x86-64) - 'perf_swevent_init' Local Privilege Escalation (2)
Open source ↗CVE-2013-2094 exploit for android
Open source ↗original cve-2013-2094 exploit and a rewritten version for educational purposes
Open source ↗Linux Kernel 2.6.32 < 3.x (CentOS 5/6) - 'PERF_EVENTS' Local Privilege Escalation (1)
Open source ↗See which npm, PyPI, Go, and Maven packages are affected by CVE-2013-2094
EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.