CVE-2012-6548

2013-03-15T20:55:00
ID CVE-2012-6548
Type cve
Reporter cve@mitre.org
Modified 2019-04-22T17:48:00

Description

The udf_encode_fh function in fs/udf/namei.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel heap memory via a crafted application. Per https://access.redhat.com/security/cve/CVE-2012-6548 "This issue affects the version of Linux kernel as shipped with Red Hat Enterprise Linux 6. Future kernel updates for Red Hat Enterprise Linux 6 may address this issue."