Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2009-0676
HistoryFeb 22, 2009 - 12:00 a.m.

CVE-2009-0676

2009-02-2200:00:00
ubuntu.com
ubuntu.com
27

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

0.4%

JSON

The sock_getsockopt function in net/core/sock.c in the Linux kernel before
2.6.28.6 does not initialize a certain structure member, which allows local
users to obtain potentially sensitive information from kernel memory via an
SO_BSDCOMPAT getsockopt request.

Notes

Author Note
mdeslaur PoC: http://patchwork.kernel.org/patch/6816/
OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchlinux< 2.6.24-23.52UNKNOWN
ubuntu8.10noarchlinux< 2.6.27-11.31UNKNOWN
ubuntu6.06noarchlinux-source-2.6.15< 2.6.15-54.76UNKNOWN
ubuntu7.10noarchlinux-source-2.6.22< 2.6.22-16.62UNKNOWN

Related

prion 1
veracode 1
f5 2
cve 1
seebug 1
nessus 24
securityvulns 3
openvas 43
suse 6
oraclelinux 4
redhat 3
centos 2
osv 3
debian 3
ubuntu 2
vmware 2
prion
prion
Server side request forgery (ssrf)
2009-02-22 22:30:00
veracode
veracode
Information Disclosure
2020-04-10 00:30:28
f5
f5
K16349 : Linux kernel vulnerability CVE-2009-0676
2015-04-01 00:00:00
SOL16349 - Linux kernel vulnerability CVE-2009-0676
2015-04-01 00:00:00
cve
cve
CVE-2009-0676
2009-02-22 22:30:00
seebug
seebug
Linux Kernel sock.c SO_BSDCOMPAT选项信息泄露漏洞
2009-02-23 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : kernel (MDVSA-2009:071)
2009-04-23 00:00:00
SuSE 11 Security Update : Linux kernel (SAT Patch Numbers 713 / 715 / 716)
2009-09-24 00:00:00
openSUSE Security Update : kernel (kernel-733)
2009-07-21 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2009-03-12 00:00:00
[ MDVSA-2009:071 ] kernel
2009-03-12 00:00:00
[SECURITY] [DSA 1787-1] New Linux 2.6.24 packages fix several vulnerabilities
2009-05-04 00:00:00
openvas
openvas
Mandrake Security Advisory MDVSA-2009:071 (kernel)
2009-03-13 00:00:00
Mandrake Security Advisory MDVSA-2009:071 (kernel)
2009-03-13 00:00:00
SuSE Security Advisory SUSE-SA:2009:021 (kernel)
2009-04-20 00:00:00
suse
suse
local privilege escalation in kernel
2009-04-16 18:23:52
remote denial of service in kernel
2009-04-03 13:04:01
remote denial of service in kernel
2009-04-03 14:20:16
oraclelinux
oraclelinux
kernel security and bug fix update
2009-05-01 00:00:00
Oracle Enterprise Linux 4.8 kernel security and bug fix update
2009-05-26 00:00:00
kernel security and bug fix update
2009-04-01 00:00:00
redhat
redhat
(RHSA-2009:0459) Important: kernel security and bug fix update
2009-04-30 00:00:00
(RHSA-2009:0360) Important: kernel-rt security and bug fix update
2009-03-26 00:00:00
(RHSA-2009:0326) Important: kernel security and bug fix update
2009-04-01 00:00:00
centos
centos
kernel security update
2009-05-01 10:39:17
kernel security update
2009-04-01 23:53:03
osv
osv
linux-2.6 - several vulnerabilities
2009-03-20 00:00:00
linux-2.6 - multiple vulnerabilities
2009-05-06 00:00:00
linux-2.6.24 - several vulnerabilities
2009-05-02 00:00:00
debian
debian
[SECURITY] [DSA 1749-1] New Linux 2.6.26 packages fix several vulnerabilities
2009-03-20 20:55:47
[SECURITY] [DSA 1794-1] New Linux 2.6.18 packages fix several vulnerabilities
2009-05-06 23:23:13
[SECURITY] [DSA 1787-1] New Linux 2.6.24 packages fix several vulnerabilities
2009-05-02 18:33:03
ubuntu
ubuntu
Linux kernel vulnerabilities
2009-04-07 00:00:00
Linux kernel vulnerabilities
2009-04-06 00:00:00
vmware
vmware
VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components
2009-11-20 00:00:00
VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
2009-11-20 00:00:00

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

0.4%

JSON
Related for UB:CVE-2009-0676
prion1veracode1f52cve1seebug1nessus24securityvulns3openvas43suse6oraclelinux4redhat3centos2osv3debian3ubuntu2vmware2