CVE-2011-4914 in Linux정보

요약

\~에 의해 MITRE

The ROSE protocol implementation in the Linux kernel before 2.6.39 does not verify that certain data-length values are consistent with the amount of data sent, which might allow remote attackers to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read) via crafted data to a ROSE socket.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

출처

Want to know what is going to be exploited?

We predict KEV entries!