The vulnerability of the Linux operating system allows a malicious individual to gain access to confidential information from the kernel’s stack memory.

The vulnerability exists in the devifconf function in the net/socket.c kernel of Linux, due to the lack of initialization for certain structures. Exploiting this vulnerability allows local users to access confidential information from the kernel’s stack memory through a specially crafted...

CVE-2012-6539

The devifconf function in net/socket.c in the Linux kernel before 3.6 does not initialize a certain structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted application...