The llc_cmsg_rcv function in net/llc/af_llc.c in the Linux kernel prior to 4.5.5 does not initialize a certain data structure, which allows malicious users to obtain sensitive information from kernel stack memory by reading a message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell suse linux enterprise server 11 |
||
novell suse linux enterprise debuginfo 11 |
||
novell suse linux enterprise software development kit 11.0 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 16.04 |
||
canonical ubuntu linux 15.10 |
||
canonical ubuntu linux 14.04 |
||
linux linux kernel |