Lucene search

K
cvelistMitreCVELIST:CVE-2009-0676
HistoryFeb 22, 2009 - 10:00 p.m.

CVE-2009-0676

2009-02-2222:00:00
mitre
www.cve.org

5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

0.4%

The sock_getsockopt function in net/core/sock.c in the Linux kernel before 2.6.28.6 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel memory via an SO_BSDCOMPAT getsockopt request.

References

5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

0.4%