The media_device_enum_entities function in drivers/media/media-device.c in the Linux kernel prior to 3.14.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory by leveraging /dev/media0 read access for a MEDIA_IOC_ENUM_ENTITIES ioctl call.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel |
||
canonical ubuntu linux 13.10 |
||
canonical ubuntu linux 12.04 |
||
suse suse linux enterprise desktop 11 |
||
suse suse linux enterprise server 11 |
||
suse linux enterprise high availability extension 11 |