CVE-2006-5174 in Kernel
摘要 (英语)
The copy_from_user function in the uaccess code in Linux kernel 2.6 before 2.6.19-rc1, when running on s390, does not properly clear a kernel buffer, which allows local user space programs to read portions of kernel memory by "appending to a file from a bad address," which triggers a fault that prevents the unused memory from being cleared in the kernel buffer.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
预定
2006-10-05
披露
2006-10-10
状态
已确认
条目
VulDB provides additional information and datapoints for this CVE:
| 标识符 | 漏洞 | CWE | 可利用 | 对策 | CVE |
|---|---|---|---|---|---|
| 2589 | Linux Kernel s390 copy_from_user 信息公开 | 908 | 概念验证 | 官方修复 | CVE-2006-5174 |