Описание
The viafb_ioctl_get_viafb_info function in drivers/video/via/ioctl.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a VIAFB_GET_INFO ioctl call.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 2.6.39-0.0 |
| hardy | not-affected | |
| karmic | released | 2.6.31-22.73 |
| lucid | released | 2.6.32-26.46 |
| maverick | released | 2.6.35-23.36 |
| natty | not-affected | 2.6.37-2.9 |
| upstream | released | 2.6.36~rc5 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | DNE | |
| karmic | released | 2.6.31-307.27 |
| lucid | released | 2.6.32-310.19 |
| maverick | ignored | end of life |
| natty | DNE | |
| upstream | released | 2.6.36~rc5 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | DNE | |
| karmic | released | 2.6.31-112.30 |
| lucid | released | 2.6.31-609.26 |
| maverick | DNE | |
| natty | DNE | |
| upstream | released | 2.6.36~rc5 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | DNE | |
| karmic | DNE | |
| lucid | released | 2.6.35-23.40~lucid1 |
| maverick | DNE | |
| natty | DNE | |
| upstream | released | 2.6.36~rc5 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | not-affected | 2.6.38-1.27~lucid1 |
| maverick | DNE | |
| natty | DNE | |
| upstream | released | 2.6.36~rc5 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | DNE | |
| hardy | DNE | |
| karmic | ignored | end of life |
| lucid | released | 2.6.32-213.29 |
| maverick | released | 2.6.32-414.30 |
| natty | DNE | |
| upstream | released | 2.6.36~rc5 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | |
| devel | DNE | |
| hardy | DNE | |
| karmic | DNE | |
| lucid | DNE | |
| maverick | DNE | |
| natty | DNE | |
| upstream | released | 2.6.36~rc5 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 2.6.38-1309.13 |
| hardy | DNE | |
| karmic | DNE | |
| lucid | DNE | |
| maverick | released | 2.6.35-903.23 |
| natty | not-affected | 2.6.38-1201.2 |
| upstream | released | 2.6.36~rc5 |
Показывать по
Ссылки на источники
EPSS
1.9 Low
CVSS2
Связанные уязвимости
The viafb_ioctl_get_viafb_info function in drivers/video/via/ioctl.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a VIAFB_GET_INFO ioctl call.
The viafb_ioctl_get_viafb_info function in drivers/video/via/ioctl.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a VIAFB_GET_INFO ioctl call.
The viafb_ioctl_get_viafb_info function in drivers/video/via/ioctl.c i ...
The viafb_ioctl_get_viafb_info function in drivers/video/via/ioctl.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a VIAFB_GET_INFO ioctl call.
ELSA-2011-0007: kernel security and bug fix update (IMPORTANT)
EPSS
1.9 Low
CVSS2