Design/Logic Flaw

2013-06-0714:03:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

8.3%

JSON

The HP Smart Array controller disk-array driver and Compaq SMART2 controller disk-array driver in the Linux kernel through 3.9.4 do not initialize certain data structures, which allows local users to obtain sensitive information from kernel memory via (1) a crafted IDAGETPCIINFO command for a /dev/ida device, related to the ida_locked_ioctl function in drivers/block/cpqarray.c or (2) a crafted CCISS_PASSTHRU32 command for a /dev/cciss device, related to the cciss_ioctl32_passthru function in drivers/block/cciss.c.

CPENameOperatorVersion
linux_kerneleq3.9.0
linux_kerneleq3.9.2
linux_kerneleq3.9 rc4
linux_kerneleq3.9 rc5
linux_kerneleq3.9 rc3
linux_kerneleq3.9 rc7
linux_kerneleq3.9.3
linux_kernelle3.9.4
linux_kerneleq3.9 rc2
linux_kerneleq3.9 rc6

Name	Operator	Version
linux_kernel	eq	3.9.0
linux_kernel	eq	3.9.2
linux_kernel	eq	3.9 rc4
linux_kernel	eq	3.9 rc5
linux_kernel	eq	3.9 rc3
linux_kernel	eq	3.9 rc7
linux_kernel	eq	3.9.3
linux_kernel	le	3.9.4
linux_kernel	eq	3.9 rc2
linux_kernel	eq	3.9 rc6