CVE-2013-3227 in Linuxजानकारी

सारांश

द्वारा MITRE

The caif_seqpkt_recvmsg function in net/caif/caif_socket.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

आरक्षित करना

21/04/2013

प्रकटीकरण

22/04/2013

प्रविष्टि

VDB-8498

EPSS

0.00378

गतिविधियाँ

बहुत कम

क्षेत्र

Industry, Pharma, ...

स्रोत

Interested in the pricing of exploits?

See the underground prices here!