Linux kernel Linux-4.6/drivers/platform/chrome/cros_ec_dev.c buffer overflow vulnerability

The Linux Kernel is the kernel of the Linux operating system. A buffer overflow vulnerability exists in the Linux kernel 4.6 and earlier, Linux-4.6/drivers/platform/chrome/crosecdev.c implementation. A buffer overflow can be caused by a remote user utilizing constructed userspace data...

security flaw

The sysgetthreadarea function in process.c in Linux 2.6 before 2.6.12.4 and 2.6.13 does not clear a data structure before copying it to userspace, which might allow a user process to obtain sensitive information...