CVE-2010-3298

2010-09-30T00:00:00
ID UB:CVE-2010-3298
Type ubuntucve
Reporter ubuntu.com
Modified 2010-09-30T00:00:00

Description

The hso_get_count function in drivers/net/usb/hso.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call.

Bugs

  • <https://bugzilla.redhat.com/show_bug.cgi?id=633140>