6 matches found
The vulnerability of the do_setvfinfo() function in the implementation of the TCP/IP protocol stack in Linux’s operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the dosetvfinfo function in the net/core/rtnetlink.c module, which is part of the Linux kernel’s TCP/IP stack, involves reading memory beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
CVE-2021-47418 net_sched: fix NULL deref in fifo_set_limit()
In the Linux kernel, the following vulnerability has been resolved: netsched: fix NULL deref in fifosetlimit syzbot reported another NULL deref in fifosetlimit 1 I could repro the issue with : unshare -n tc qd add dev lo root handle 1:0 tbf limit 200000 burst 70000 rate 100Mbit tc qd replace dev ...
Information Disclosure
kernel-rt is vulnerable to information disclosure. The vulnerability exists as the rtnlfillifinfo function in net/core/rtnetlink.c does not initialize a certain structure member...
Design/Logic Flaw
The rtnlfillifinfo function in net/core/rtnetlink.c in the Linux kernel before 3.8.4 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel stack memory via a crafted application...
CVE-2013-2635
The rtnlfillifinfo function in net/core/rtnetlink.c in the Linux kernel before 3.8.4 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel stack memory via a crafted application...
CVE-2013-2635
The CVE-2013-2635 issue affects the Linux kernel’s rtnetlink path: rtnl_fill_ifinfo in net/core/rtnetlink.c does not initialize a structure member, enabling a local attacker to read kernel stack memory. The vulnerability is associated with Linux kernel versions prior to 3.8.4; the documented fix ...