Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2009-3612

Опубликовано: 19 окт. 2009
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 2.1

Описание

The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcm__pad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2005-4881.

РелизСтатусПримечание
dapper

DNE

devel

not-affected

hardy

released

2.6.24-26.64
intrepid

released

2.6.27-16.44
jaunty

released

2.6.28-17.58
karmic

released

2.6.31-16.52
upstream

released

2.6.32~rc5

Показывать по

РелизСтатусПримечание
dapper

released

2.6.15-55.81
devel

DNE

hardy

DNE

intrepid

DNE

jaunty

DNE

karmic

DNE

upstream

released

2.6.32~rc5

Показывать по

Ссылки на источники

EPSS

Процентиль: 22%
0.0007
Низкий

2.1 Low

CVSS2

Связанные уязвимости

redhat логотип

CVE-2009-3612

redhat
больше 15 лет назад

The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcm__pad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2005-4881.

nvd логотип

CVE-2009-3612

nvd
больше 15 лет назад

The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcm__pad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2005-4881.

debian логотип

CVE-2009-3612

debian
больше 15 лет назад

The tcf_fill_node function in net/sched/cls_api.c in the netlink subsy ...

github логотип

GHSA-vr55-mp4p-wfh2

github
около 3 лет назад

The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcm__pad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2005-4881.

oracle-oval логотип

ELSA-2009-1670

oracle-oval
больше 15 лет назад

ELSA-2009-1670: kernel security and bug fix update (IMPORTANT)

EPSS

Процентиль: 22%
0.0007
Низкий

2.1 Low

CVSS2