Lucene search
HistoryOct 10, 2012 - 9:55 p.m.
CVE-2012-4467
cve-2012-4467
linux kernel
security vulnerability
information disclosure
dos
nvd
6.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:N/A:C
6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
The (1) do_siocgstamp and (2) do_siocgstampns functions in net/socket.c in the Linux kernel before 3.5.4 use an incorrect argument order, which allows local users to obtain sensitive information from kernel memory or cause a denial of service (system crash) via a crafted ioctl call.
Affected configurations
Node
linuxlinux_kernelRange≤3.5.3
ORlinuxlinux_kernelMatch3.0rc1
ORlinuxlinux_kernelMatch3.0rc2
ORlinuxlinux_kernelMatch3.0rc3
ORlinuxlinux_kernelMatch3.0rc4
ORlinuxlinux_kernelMatch3.0rc5
ORlinuxlinux_kernelMatch3.0rc6
ORlinuxlinux_kernelMatch3.0rc7
ORlinuxlinux_kernelMatch3.0.1
ORlinuxlinux_kernelMatch3.0.2
ORlinuxlinux_kernelMatch3.0.3
ORlinuxlinux_kernelMatch3.0.4
ORlinuxlinux_kernelMatch3.0.5
ORlinuxlinux_kernelMatch3.0.6
ORlinuxlinux_kernelMatch3.0.7
ORlinuxlinux_kernelMatch3.0.8
ORlinuxlinux_kernelMatch3.0.9
ORlinuxlinux_kernelMatch3.0.10
ORlinuxlinux_kernelMatch3.0.11
ORlinuxlinux_kernelMatch3.0.12
ORlinuxlinux_kernelMatch3.0.13
ORlinuxlinux_kernelMatch3.0.14
ORlinuxlinux_kernelMatch3.0.15
ORlinuxlinux_kernelMatch3.0.16
ORlinuxlinux_kernelMatch3.0.17
ORlinuxlinux_kernelMatch3.0.18
ORlinuxlinux_kernelMatch3.0.19
ORlinuxlinux_kernelMatch3.0.20
ORlinuxlinux_kernelMatch3.0.21
ORlinuxlinux_kernelMatch3.0.22
ORlinuxlinux_kernelMatch3.0.23
ORlinuxlinux_kernelMatch3.0.24
ORlinuxlinux_kernelMatch3.0.25
ORlinuxlinux_kernelMatch3.0.26
ORlinuxlinux_kernelMatch3.0.27
ORlinuxlinux_kernelMatch3.0.28
ORlinuxlinux_kernelMatch3.0.29
ORlinuxlinux_kernelMatch3.0.30
ORlinuxlinux_kernelMatch3.0.31
ORlinuxlinux_kernelMatch3.0.32
ORlinuxlinux_kernelMatch3.0.33
ORlinuxlinux_kernelMatch3.0.34
ORlinuxlinux_kernelMatch3.0.35
ORlinuxlinux_kernelMatch3.0.36
ORlinuxlinux_kernelMatch3.0.37
ORlinuxlinux_kernelMatch3.0.38
ORlinuxlinux_kernelMatch3.0.39
ORlinuxlinux_kernelMatch3.0.40
ORlinuxlinux_kernelMatch3.0.41
ORlinuxlinux_kernelMatch3.0.42
ORlinuxlinux_kernelMatch3.0.43
ORlinuxlinux_kernelMatch3.0.44
ORlinuxlinux_kernelMatch3.1
ORlinuxlinux_kernelMatch3.1rc1
ORlinuxlinux_kernelMatch3.1rc2
ORlinuxlinux_kernelMatch3.1rc3
ORlinuxlinux_kernelMatch3.1rc4
ORlinuxlinux_kernelMatch3.1.1
ORlinuxlinux_kernelMatch3.1.2
ORlinuxlinux_kernelMatch3.1.3
ORlinuxlinux_kernelMatch3.1.4
ORlinuxlinux_kernelMatch3.1.5
ORlinuxlinux_kernelMatch3.1.6
ORlinuxlinux_kernelMatch3.1.7
ORlinuxlinux_kernelMatch3.1.8
ORlinuxlinux_kernelMatch3.1.9
ORlinuxlinux_kernelMatch3.1.10
ORlinuxlinux_kernelMatch3.2
ORlinuxlinux_kernelMatch3.2rc2
ORlinuxlinux_kernelMatch3.2rc3
ORlinuxlinux_kernelMatch3.2rc4
ORlinuxlinux_kernelMatch3.2rc5
ORlinuxlinux_kernelMatch3.2rc6
ORlinuxlinux_kernelMatch3.2rc7
ORlinuxlinux_kernelMatch3.2.1
ORlinuxlinux_kernelMatch3.2.2
ORlinuxlinux_kernelMatch3.2.3
ORlinuxlinux_kernelMatch3.2.4
ORlinuxlinux_kernelMatch3.2.5
ORlinuxlinux_kernelMatch3.2.6
ORlinuxlinux_kernelMatch3.2.7
ORlinuxlinux_kernelMatch3.2.8
ORlinuxlinux_kernelMatch3.2.9
ORlinuxlinux_kernelMatch3.2.10
ORlinuxlinux_kernelMatch3.2.11
ORlinuxlinux_kernelMatch3.2.12
ORlinuxlinux_kernelMatch3.2.13
ORlinuxlinux_kernelMatch3.2.14
ORlinuxlinux_kernelMatch3.2.15
ORlinuxlinux_kernelMatch3.2.16
ORlinuxlinux_kernelMatch3.2.17
ORlinuxlinux_kernelMatch3.2.18
ORlinuxlinux_kernelMatch3.2.19
ORlinuxlinux_kernelMatch3.2.20
ORlinuxlinux_kernelMatch3.2.21
ORlinuxlinux_kernelMatch3.2.22
ORlinuxlinux_kernelMatch3.2.23
ORlinuxlinux_kernelMatch3.2.24
ORlinuxlinux_kernelMatch3.2.25
ORlinuxlinux_kernelMatch3.2.26
ORlinuxlinux_kernelMatch3.2.27
ORlinuxlinux_kernelMatch3.2.28
ORlinuxlinux_kernelMatch3.2.29
ORlinuxlinux_kernelMatch3.2.30
ORlinuxlinux_kernelMatch3.3
ORlinuxlinux_kernelMatch3.3rc1
ORlinuxlinux_kernelMatch3.3rc2
ORlinuxlinux_kernelMatch3.3rc3
ORlinuxlinux_kernelMatch3.3rc4
ORlinuxlinux_kernelMatch3.3rc5
ORlinuxlinux_kernelMatch3.3rc6
ORlinuxlinux_kernelMatch3.3rc7
ORlinuxlinux_kernelMatch3.3.1
ORlinuxlinux_kernelMatch3.3.2
ORlinuxlinux_kernelMatch3.3.3
ORlinuxlinux_kernelMatch3.3.4
ORlinuxlinux_kernelMatch3.3.5
ORlinuxlinux_kernelMatch3.3.6
ORlinuxlinux_kernelMatch3.3.7
ORlinuxlinux_kernelMatch3.3.8
ORlinuxlinux_kernelMatch3.4
ORlinuxlinux_kernelMatch3.4rc1
ORlinuxlinux_kernelMatch3.4rc2
ORlinuxlinux_kernelMatch3.4rc3
ORlinuxlinux_kernelMatch3.4rc4
ORlinuxlinux_kernelMatch3.4rc5
ORlinuxlinux_kernelMatch3.4rc6
ORlinuxlinux_kernelMatch3.4rc7
ORlinuxlinux_kernelMatch3.4.1
ORlinuxlinux_kernelMatch3.4.2
ORlinuxlinux_kernelMatch3.4.3
ORlinuxlinux_kernelMatch3.4.4
ORlinuxlinux_kernelMatch3.4.5
ORlinuxlinux_kernelMatch3.4.6
ORlinuxlinux_kernelMatch3.4.7
ORlinuxlinux_kernelMatch3.4.8
ORlinuxlinux_kernelMatch3.4.9
ORlinuxlinux_kernelMatch3.4.10
ORlinuxlinux_kernelMatch3.4.11
ORlinuxlinux_kernelMatch3.4.12
ORlinuxlinux_kernelMatch3.4.13
ORlinuxlinux_kernelMatch3.5.1
ORlinuxlinux_kernelMatch3.5.2
References
git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ed6fe9d614fc1bca95eb8c0ccd0e92db00ef9d5d
www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.5.4
www.openwall.com/lists/oss-security/2012/10/04/2
www.securityfocus.com/bid/55785
github.com/torvalds/linux/commit/ed6fe9d614fc1bca95eb8c0ccd0e92db00ef9d5d
Related
ubuntucve
ubuntucve
CVE-2012-4467
2012-10-10 00:00:00
prion
prion
Code injection
2012-10-10 21:55:00
debiancve
debiancve
CVE-2012-4467
2012-10-10 21:55:00
redhatcve
redhatcve
CVE-2012-4467
2015-10-30 10:30:11
cvelist
cvelist
CVE-2012-4467
2012-10-10 21:00:00
nvd
nvd
CVE-2012-4467
2012-10-10 21:55:00
6.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:N/A:C
6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2012-4467