Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2012-6542

Опубликовано: 15 авг. 2012
Источник: redhat
CVSS2: 1.9

Описание

The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument.

Отчет

This issue does not affect the versions of the kernel package as shipped with Red Hat Enterprise MRG 2. This issue affects the version of the Linux kernel as shipped with Red Hat Enterprise Linux 5 and Red Hat Enterprise Linux 6. Future kernel updates for Red Hat Enterprise Linux 6 may address this issue.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise MRG 2realtime-kernelNot affected
Red Hat Enterprise Linux 5kernelFixedRHSA-2013:074716.04.2013
Red Hat Enterprise Linux 6kernelFixedRHSA-2013:164520.11.2013

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
https://bugzilla.redhat.com/show_bug.cgi?id=922322Kernel: llc: information leak via getsockname

1.9 Low

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2012-6542

ubuntu
больше 12 лет назад

The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument.

nvd логотип

CVE-2012-6542

nvd
больше 12 лет назад

The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument.

debian логотип

CVE-2012-6542

debian
больше 12 лет назад

The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel be ...

github логотип

GHSA-vwvf-8m35-552r

github
около 3 лет назад

The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument.

fstec логотип

BDU:2014-00075

fstec
больше 12 лет назад

Уязвимость операционной системы Linux, позволяющая злоумышленнику получить доступ к конфиденциальной информации из стековой памяти ядра

1.9 Low

CVSS2