CVE-2015-5697

Опубликовано: 25 июл. 2015

Источник: redhat

CVSS2: 1.9

EPSS Низкий

Описание

The get_bitmap_file function in drivers/md/md.c in the Linux kernel before 4.1.6 does not initialize a certain bitmap data structure, which allows local users to obtain sensitive information from kernel memory via a GET_BITMAP_FILE ioctl call.

A cross-boundary flaw was discovered in the Linux kernel software raid driver. The driver accessed a disabled bitmap where only the first byte of the buffer was initialized to zero. This meant that the rest of the request (up to 4095 bytes) was left and copied into user space. An attacker could use this flaw to read private information from user space that would not otherwise have been accessible.

Отчет

This issue affects the Linux kernels as shipped with Red Hat Enterprise Linux 5, 6, 7, MRG-2 and realtime and may be addressed in a future update.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 4	kernel	Not affected
Red Hat Enterprise Linux 5	kernel	Affected
Red Hat Enterprise Linux 6	kernel	Affected
Red Hat Enterprise Linux 7	kernel	Affected
Red Hat Enterprise Linux 7	kernel-rt	Affected
Red Hat Enterprise MRG 2	realtime-kernel	Affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-212

https://bugzilla.redhat.com/show_bug.cgi?id=1249011kernel: information leak in md driver

EPSS

Процентиль: 21%

0.00067

Низкий

1.9 Low

CVSS2

Связанные уязвимости

CVE-2015-5697

ubuntu

почти 10 лет назад

CVE-2015-5697

nvd

почти 10 лет назад

CVE-2015-5697

debian

почти 10 лет назад

The get_bitmap_file function in drivers/md/md.c in the Linux kernel be ...

GHSA-6335-hw2p-8cqf

github

около 3 лет назад

ELSA-2015-3066

oracle-oval

почти 10 лет назад

ELSA-2015-3066: Unbreakable Enterprise kernel security update (LOW)

EPSS

Процентиль: 21%

0.00067

Низкий

1.9 Low

CVSS2