Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:23704
HistoryApr 10, 2020 - 12:33 a.m.

Information Disclosure

2020-04-1000:33:59
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

kernel is vulnerable to information disclosure. The vulnerability exists as a flaw was found in the AGPGART driver. The agp_generic_alloc_page() and agp_generic_alloc_pages() functions did not zero out the memory pages they allocate, which may later be available to user-space processes. This flaw could possibly lead to an information leak.

References

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N