← volver
CVE-2006-5174

CVE-2006-5174

EPSS 0.4%
The copy_from_user function in the uaccess code in Linux kernel 2.6 before 2.6.19-rc1, when running on s390, does not properly clear a kernel buffer, which allows local user space programs to read portions of kernel memory by "appending to a file from a bad address," which triggers a fault that prevents the unused memory from being cleared in the kernel buffer.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://lkml.org/lkml/2006/11/5/46http://rhn.redhat.com/errata/RHSA-2007-0014.htmlhttp://secunia.com/advisories/22289http://secunia.com/advisories/22497http://secunia.com/advisories/23064http://secunia.com/advisories/23370http://secunia.com/advisories/23395http://secunia.com/advisories/23474http://secunia.com/advisories/23997http://secunia.com/advisories/24206http://securitytracker.com/id?1017090https://exchange.xforce.ibmcloud.com/vulnerabilities/29378