CVE-2011-1078

2012-06-21T23:55:00
ID CVE-2011-1078
Type cve
Reporter cve@mitre.org
Modified 2015-05-06T01:59:00

Description

The sco_sock_getsockopt_old function in net/bluetooth/sco.c in the Linux kernel before 2.6.39 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via the SCO_CONNINFO option.