First published: Wed Nov 10 2010(Updated: )
Description of problem: The "mem" array used as scratch space for socket filters is not initialized, allowing unprivileged users to leak kernel stack bytes. <a href="http://www.spinics.net/lists/netdev/msg146361.html">http://www.spinics.net/lists/netdev/msg146361.html</a> <a href="http://lists.grok.org.uk/pipermail/full-disclosure/2010-November/077321.html">http://lists.grok.org.uk/pipermail/full-disclosure/2010-November/077321.html</a> Acknowledgements: Red Hat would like to thank Dan Rosenberg for reporting this issue.
Credit: secalert@redhat.com secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/kernel-rt | <0:2.6.33.7-rt29.47.el5 | 0:2.6.33.7-rt29.47.el5 |
redhat/kernel | <0:2.6.18-238.el5 | 0:2.6.18-238.el5 |
redhat/kernel | <0:2.6.32-71.14.1.el6 | 0:2.6.32-71.14.1.el6 |
debian/linux-2.6 | ||
debian/user-mode-linux | ||
Linux Linux kernel | <2.6.36.2 | |
Fedoraproject Fedora | =13 | |
SUSE Linux Enterprise Server | =10-sp3 | |
SUSE Linux Enterprise Desktop | =11-sp1 | |
SUSE Linux Enterprise Server | =11-sp1 | |
SUSE Linux Enterprise Server | =9 | |
openSUSE openSUSE | =11.2 | |
openSUSE openSUSE | =11.3 | |
SUSE Linux Enterprise Desktop | =10-sp3 | |
SUSE Linux Enterprise Software Development Kit | =10-sp3 | |
Suse Linux Enterprise Real Time Extension | =11-sp1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)