QwikSec

Security Database

CVE

CWE

Training

CVE-2006-1342

Published: Mar 21, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

net/ipv4/af_inet.c in Linux kernel 2.4 does not clear sockaddr_in.sin_zero before returning IPv4 socket names from the (1) getsockname, (2) getpeername, and (3) accept functions, which allows local users to obtain portions of potentially sensitive memory.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.kernel.org/git/?p=linux/kernel/git/marcelo/linux-2.4.git%3Ba=commit%3Bh=09d3b3dcfa80c9094f1748c1be064b9326c9ef2b

x_refsource_CONFIRM

vdb-entry

x_refsource_VUPEN

vendor-advisory

x_refsource_REDHAT

third-party-advisory

x_refsource_SECUNIA

http://www.vmware.com/download/esx/esx-202-200610-patch.html

x_refsource_CONFIRM

20061113 VMSA-2006-0008 - VMware ESX Server 2.0.2 Upgrade Patch 2

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_SECUNIA

http://www.vmware.com/download/esx/esx-213-200610-patch.html

x_refsource_CONFIRM

SUSE-SA:2006:028

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_REDHAT

http://www.vmware.com/download/esx/esx-254-200610-patch.html

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

20061113 VMSA-2006-0006 - VMware ESX Server 2.5.3 Upgrade Patch 4

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_SECUNIA

20061113 VMSA-2006-0007 - VMware ESX Server 2.1.3 Upgrade Patch 2

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_BID

20061113 VMSA-2006-0005 - VMware ESX Server 2.5.4 Upgrade Patch 1

mailing-list

x_refsource_BUGTRAQ

[linux-netdev] 20060304 BUG: Small information leak in SO_ORIGINAL_DST (2.4 and 2.6) and

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.