kernel: heap contents leak for CAP_NET_ADMIN via ethtool ioctl

net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel heap memory by leveraging the CAPNETADMIN capability for an ethtool ioctl call...

kernel: drivers/sound/pci/rme9652/hdsp.c: reading uninitialized stack memory

The sndhdsphwdepioctl function in sound/pci/rme9652/hdsp.c in the Linux kernel before 2.6.36-rc6 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via an SNDRVHDSPIOCTLGETCONFIGINFO ioctl call...

PT-2010-5124 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.36 Description: The issue is related to the ethtool get rxnfc function in the Linux kernel, which does not properly initialize a block of heap memory. This can be exploited by local users to obtain potential...

Linux Kernel 'do_io_submit()' Integer Overflow Vulnerability

The Linux Kernel is the kernel used by the open source operating system Linux. An integer overflow vulnerability exists in the doiosubmit function in the fs/aio.c file in versions of Linux kernel prior to 2.6.36-rc4-next-20100915. A local user can cause a denial of service with the use of a...