The actions implementation in the network queueing functionality in the Linux kernel prior to 2.6.36-rc2 does not properly initialize certain structure members when performing dump operations, which allows local users to obtain potentially sensitive information from kernel memory via vectors related to (1) the tcf_gact_dump function in net/sched/act_gact.c, (2) the tcf_mirred_dump function in net/sched/act_mirred.c, (3) the tcf_nat_dump function in net/sched/act_nat.c, (4) the tcf_simp_dump function in net/sched/act_simple.c, and (5) the tcf_skbedit_dump function in net/sched/act_skbedit.c.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
linux linux kernel 2.6.36 |
||
linux linux kernel |
||
canonical ubuntu linux 10.10 |
||
canonical ubuntu linux 9.04 |
||
canonical ubuntu linux 9.10 |
||
canonical ubuntu linux 10.04 |
||
canonical ubuntu linux 8.04 |
||
canonical ubuntu linux 6.06 |
||
opensuse opensuse 11.1 |
||
opensuse opensuse 11.3 |
||
suse suse linux enterprise server 11 |
||
suse suse linux enterprise desktop 11 |
||
suse suse linux enterprise server 10 |
||
suse suse linux enterprise desktop 10 |
||
avaya aura system manager 6.0 |
||
avaya aura system manager 5.2 |
||
avaya aura communication manager 5.2 |
||
avaya voice portal 5.1 |
||
avaya voice portal 5.0 |
||
avaya aura system platform 1.1 |
||
avaya aura system platform 6.0 |
||
avaya aura system manager 6.1 |
||
avaya aura system manager 6.1.1 |
||
avaya aura session manager 1.1 |
||
avaya aura session manager 5.2 |
||
avaya aura session manager 6.0 |
||
avaya aura presence services 6.1 |
||
avaya aura presence services 6.1.1 |
||
avaya aura presence services 6.0 |
||
avaya iq 5.1 |
||
avaya iq 5.0 |
||
vmware esx 4.1 |
||
vmware esx 4.0 |
Vulmon