The isofs_export_encode_fh function in fs/isofs/export.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel heap memory via a crafted application.
References
Configurations
Configuration 1 (hide)
|
History
07 Nov 2023, 02:13
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2013-03-15 20:55
Updated : 2024-02-28 12:00
NVD link : CVE-2012-6549
Mitre link : CVE-2012-6549
CVE.ORG link : CVE-2012-6549
JSON object : View
Products Affected
linux
- linux_kernel
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor