2 matches found
SUSE CVE-2013-3076
The crypto API in the Linux kernel through 3.9-rc8 does not initialize certain length variables, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call, related to the hashrecvmsg function in crypto/algifhash.c and the...
Information Disclosure
kernel-rt is vulnerable to information disclosure. The vulnerability exists as the crypto API does not initialize certain length variables...