Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:12172
HistorySep 02, 2009 - 12:00 a.m.

Linux Kernel .getname函数多个信息泄露漏洞

2009-09-0200:00:00
Root
www.seebug.org
23

0.0004 Low

EPSS

Percentile

8.8%

JSON

BUGTRAQ ID: 36176
CVE(CAN) ID: CVE-2009-3002

Linux Kernel是开放源码操作系统Linux所使用的内核。

Linux Kernel的getname函数没有正确地初始化某些数据结构,本地用户可以通过对AF_APPLETALK、AF_IRDA、AF_ECONET、 AF_NETROM、AF_ROSE、原始CAN等套接字执行getsockname调用读取部分内核内存的内容。

Linux kernel 2.6.x
厂商补丁:

Linux

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=09384dfc76e526c3993c09c42e016372dc9dd22c
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=17ac2e9c58b69a1e25460a568eae1b0dc0188c25
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=3d392475c873c10c10d6d96b94d092a34ebd4791
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=80922bbb12a105f858a8f0abb879cb4302d0ecaa
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=e84b90ae5eb3c112d1f208964df1d8156a538289
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=f6b97b29513950bfbf621a83d85b6f86b39ec8db


                                                http://sebug.net/exploit/12161/
http://sebug.net/exploit/12137/

Related

prion 1
seebug 2
exploitpack 1
veracode 1
ubuntucve 1
cve 1
openvas 28
nessus 22
suse 4
oraclelinux 3
centos 1
redhat 2
osv 3
securityvulns 2
debian 3
vmware 1
fedora 1
ubuntu 1
prion
prion
Memory corruption
2009-08-28 15:30:00
seebug
seebug
Linux Kernel < 2.6.31-rc7 - AF_IRDA 29-Byte Stack Disclosure Exploit
2014-07-01 00:00:00
Linux Kernel &lt; 2.6.31-rc7 AF_IRDA 29-Byte Stack Disclosure Exploit
2009-09-01 00:00:00
exploitpack
exploitpack
Linux Kernel 2.6.31-rc7 - AF_IRDA 29-Byte Stack Disclosure (2)
2009-08-31 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:40:03
ubuntucve
ubuntucve
CVE-2009-3002
2009-08-28 00:00:00
cve
cve
CVE-2009-3002
2009-08-28 15:30:00
openvas
openvas
SuSE Security Advisory SUSE-SA:2009:051 (kernel)
2009-11-11 00:00:00
SLES11: Security update for Linux kernel
2009-11-11 00:00:00
Oracle: Security Advisory (ELSA-2009-1455)
2015-10-08 00:00:00
nessus
nessus
SuSE 11 Security Update : Linux kernel (SAT Patch Numbers 1410 / 1412 / 1413)
2009-11-03 00:00:00
openSUSE Security Update : kernel (kernel-1415)
2009-11-02 00:00:00
Fedora 10 : kernel-2.6.27.35-170.2.94.fc10 (2009-10165)
2009-10-05 00:00:00
suse
suse
potential local privilege escalation in kernel
2009-11-02 17:52:48
local privilege escalation in kernel
2009-11-16 13:03:36
local privilege escalation in kernel
2009-11-11 17:52:30
oraclelinux
oraclelinux
kernel security and bug fix update
2009-09-30 00:00:00
kernel security and bug fix update
2009-11-04 00:00:00
Oracle Enterprise Linux 5.5 kernel security and bug fix update
2010-04-05 00:00:00
centos
centos
kernel security update
2009-11-04 00:55:32
redhat
redhat
(RHSA-2009:1550) Important: kernel security and bug fix update
2009-11-03 00:00:00
(RHSA-2009:1540) Important: kernel-rt security, bug fix, and enhancement update
2009-11-03 00:00:00
osv
osv
linux-2.6 - several vulnerabilities
2009-10-22 00:00:00
linux-2.6 - several vulnerabilities
2009-11-05 00:00:00
linux-2.6.24 - several vulnerabilities
2009-11-05 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 1915-1] New Linux 2.6.26 packages fix several vulnerabilities
2009-10-23 00:00:00
Linux kernel multiple security vulnerabilities
2009-11-08 00:00:00
debian
debian
[SECURITY] [DSA 1929-1] New Linux 2.6.18 packages fix several vulnerabilities
2009-11-06 00:51:43
[SECURITY] [DSA 1915-1] New Linux 2.6.26 packages fix several vulnerabilities
2009-10-23 15:58:04
[SECURITY] [DSA 1928-1] New Linux 2.6.24 packages fix several vulnerabilities
2009-11-05 22:03:48
vmware
vmware
ESX 3.5 third party update for Service Console kernel
2010-06-24 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: kernel-2.6.27.35-170.2.94.fc10
2009-10-03 18:56:05
ubuntu
ubuntu
Linux kernel vulnerabilities
2009-10-22 00:00:00

0.0004 Low

EPSS

Percentile

8.8%

JSON
Related for SSV:12172
prion1seebug2exploitpack1veracode1ubuntucve1cve1openvas28nessus22suse4oraclelinux3centos1redhat2osv3securityvulns2debian3vmware1fedora1ubuntu1