CVE-2011-4914 in Linuxthông tin

Tóm tắt

Bởi MITRE

The ROSE protocol implementation in the Linux kernel before 2.6.39 does not verify that certain data-length values are consistent with the amount of data sent, which might allow remote attackers to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read) via crafted data to a ROSE socket.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Đặt trước

23/12/2011

Tiết lộ

21/06/2012

Kiểm duyệt

được chấp nhận

mục

VDB-61074

EPSS

0.08793

KEV

không

Các hoạt động

rất thấp

Nguồn

Want to stay up to date on a daily basis?

Enable the mail alert feature now!