Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:4815
HistoryFeb 23, 2009 - 12:00 a.m.

Linux Kernel sock.c SO_BSDCOMPAT选项信息泄露漏洞

2009-02-2300:00:00
Root
www.seebug.org
32

0.0004 Low

EPSS

Percentile

0.4%

JSON

BUGTRAQ ID: 33846
CVE(CAN) ID: CVE-2009-0676

Linux Kernel是开放源码操作系统Linux所使用的内核。

在Linux Kernel的net/core/sock.c文件的sock_getsockopt()函数中,如果设置了SO_BSDCOMPA选项的话optval v.val就会被错误的初始化并直接返回给用户域,导致信息泄露。

Linux kernel 2.6.x
厂商补丁:

Linux

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

<a href=“http://kernel.org/pub/linux/kernel/v2.6/patch-2.6.28.6.bz2” target=“_blank”>http://kernel.org/pub/linux/kernel/v2.6/patch-2.6.28.6.bz2</a>


                                                https://bugzilla.redhat.com/show_bug.cgi?format=multiple&amp;id=486305

Related

prion 1
ubuntucve 1
veracode 1
f5 2
cve 1
openvas 41
securityvulns 3
nessus 24
suse 6
oraclelinux 4
redhat 3
centos 2
osv 3
debian 3
ubuntu 2
vmware 2
prion
prion
Server side request forgery (ssrf)
2009-02-22 22:30:00
ubuntucve
ubuntucve
CVE-2009-0676
2009-02-22 00:00:00
veracode
veracode
Information Disclosure
2020-04-10 00:30:28
f5
f5
K16349 : Linux kernel vulnerability CVE-2009-0676
2015-04-01 00:00:00
SOL16349 - Linux kernel vulnerability CVE-2009-0676
2015-04-01 00:00:00
cve
cve
CVE-2009-0676
2009-02-22 22:30:00
openvas
openvas
Mandrake Security Advisory MDVSA-2009:071 (kernel)
2009-03-13 00:00:00
Mandrake Security Advisory MDVSA-2009:071 (kernel)
2009-03-13 00:00:00
SuSE Security Advisory SUSE-SA:2009:021 (kernel)
2009-04-20 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2009-03-12 00:00:00
[ MDVSA-2009:071 ] kernel
2009-03-12 00:00:00
[SECURITY] [DSA 1787-1] New Linux 2.6.24 packages fix several vulnerabilities
2009-05-04 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : kernel (MDVSA-2009:071)
2009-04-23 00:00:00
SuSE 11 Security Update : Linux kernel (SAT Patch Numbers 713 / 715 / 716)
2009-09-24 00:00:00
openSUSE Security Update : kernel (kernel-733)
2009-07-21 00:00:00
suse
suse
local privilege escalation in kernel
2009-04-16 18:23:52
remote denial of service in kernel
2009-04-03 13:04:01
remote denial of service in kernel
2009-04-03 14:20:16
oraclelinux
oraclelinux
kernel security and bug fix update
2009-05-01 00:00:00
Oracle Enterprise Linux 4.8 kernel security and bug fix update
2009-05-26 00:00:00
kernel security and bug fix update
2009-04-01 00:00:00
redhat
redhat
(RHSA-2009:0459) Important: kernel security and bug fix update
2009-04-30 00:00:00
(RHSA-2009:0360) Important: kernel-rt security and bug fix update
2009-03-26 00:00:00
(RHSA-2009:0326) Important: kernel security and bug fix update
2009-04-01 00:00:00
centos
centos
kernel security update
2009-05-01 10:39:17
kernel security update
2009-04-01 23:53:03
osv
osv
linux-2.6 - several vulnerabilities
2009-03-20 00:00:00
linux-2.6 - multiple vulnerabilities
2009-05-06 00:00:00
linux-2.6.24 - several vulnerabilities
2009-05-02 00:00:00
debian
debian
[SECURITY] [DSA 1749-1] New Linux 2.6.26 packages fix several vulnerabilities
2009-03-20 20:55:47
[SECURITY] [DSA 1794-1] New Linux 2.6.18 packages fix several vulnerabilities
2009-05-06 23:23:13
[SECURITY] [DSA 1787-1] New Linux 2.6.24 packages fix several vulnerabilities
2009-05-02 18:33:03
ubuntu
ubuntu
Linux kernel vulnerabilities
2009-04-07 00:00:00
Linux kernel vulnerabilities
2009-04-06 00:00:00
vmware
vmware
VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components
2009-11-20 00:00:00
VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
2009-11-20 00:00:00

0.0004 Low

EPSS

Percentile

0.4%

JSON
Related for SSV:4815
prion1ubuntucve1veracode1f52cve1openvas41securityvulns3nessus24suse6oraclelinux4redhat3centos2osv3debian3ubuntu2vmware2