Описание
The sco_sock_getsockopt_old function in net/bluetooth/sco.c in the Linux kernel before 2.6.39 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via the SCO_CONNINFO option.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 4 | kernel | Affected | ||
| MRG for RHEL-5 | kernel-rt | Fixed | RHSA-2011:0500 | 10.05.2011 |
| Red Hat Enterprise Linux 5 | kernel | Fixed | RHSA-2011:0833 | 31.05.2011 |
| Red Hat Enterprise Linux 6 | kernel | Fixed | RHSA-2012:1156 | 14.08.2012 |
Показывать по
Дополнительная информация
Статус:
1.9 Low
CVSS2
Связанные уязвимости
The sco_sock_getsockopt_old function in net/bluetooth/sco.c in the Linux kernel before 2.6.39 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via the SCO_CONNINFO option.
The sco_sock_getsockopt_old function in net/bluetooth/sco.c in the Linux kernel before 2.6.39 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via the SCO_CONNINFO option.
The sco_sock_getsockopt_old function in net/bluetooth/sco.c in the Lin ...
The sco_sock_getsockopt_old function in net/bluetooth/sco.c in the Linux kernel before 2.6.39 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via the SCO_CONNINFO option.
ELSA-2012-1156: kernel security and bug fix update (MODERATE)
1.9 Low
CVSS2