6 matches found
EUVD-2010-3853
Malware in sbrugna...
CVE-2010-3875
The ax25getname function in net/ax25/afax25.c in the Linux kernel before 2.6.37-rc2 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory by reading a copy of this structure...
CVE-2010-3875
The ax25getname function in net/ax25/afax25.c in the Linux kernel before 2.6.37-rc2 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory by reading a copy of this structure...
CVE-2010-3875
CVE-2010-3875 affects the Linux kernel, specifically the ax25_getname function in net/ax25/af_ax25.c. The root cause is that a structure is not initialized, enabling local users to read a copy of kernel stack memory and potentially obtain sensitive information. The issue is tied to kernels prior ...
CVE-2010-3875
The ax25getname function in net/ax25/afax25.c in the Linux kernel before 2.6.37-rc2 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory by reading a copy of this structure...
Linux Kernel net/子系统多个本地信息泄露漏洞
BUGTRAQ ID: 44630 Linux Kernel是开放源码操作系统Linux所使用的内核。 在Linux Kernel的net/子系统中net/ax25/afax25.c文件下的ax25getname函数和net/packet /afpacket.c文件下的packetgetnamespkt、packetgetname函数没有正确地初始化某些结构成员便将其拷贝到了用户空间,这可能导致泄漏内核栈内存。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...