Information Disclosure

Linux kernel is vulnerable to information disclosure. The llcuigetname function in net/llc/afllc.c does not correctly return a value in certain circumstances. This allows an attacker to obtain confidential information from the kernel stack memory via a malicious application that uses uninitialize...

CVE-2012-6542

The llcuigetname function in net/llc/afllc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument...

Linux Kernel llc_ui_getname函数本地信息泄露漏洞

BUGTRAQ ID: 36126 CVECAN ID: CVE-2009-3001 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的net/llc/afllc.c文件中的llcuigetname函数没有正确地初始化某些数据结构，这允许本地用户通过对AFLLC套接字调用getsockname读取部分内核内存的内容。 Linux kernel 2.6.31-rc7 厂商补丁： Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

Memory corruption

The llcuigetname function in net/llc/afllc.c in the Linux kernel 2.6.31-rc7 and earlier does not initialize a certain data structure, which allows local users to read the contents of some kernel memory locations by calling getsockname on an AFLLC socket...

CVE-2009-3001

The llcuigetname function in net/llc/afllc.c in the Linux kernel 2.6.31-rc7 and earlier does not initialize a certain data structure, which allows local users to read the contents of some kernel memory locations by calling getsockname on an AFLLC socket...

CVE-2009-3001

The llcuigetname function in net/llc/afllc.c in the Linux kernel 2.6.31-rc7 and earlier does not initialize a certain data structure, which allows local users to read the contents of some kernel memory locations by calling getsockname on an AFLLC socket...

CVE-2009-3001

Technical details about CVE-2009-3001 are not provided in the connected documents; the initial description states a kernel infoleak via getsockname on AF_LLC, but no vendor/product/version specifics or fixes are included. Monitor for updates.