QwikSec

Security Database

CVE

CWE

Training

CVE-2009-0676

Published: Feb 22, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

The sock_getsockopt function in net/core/sock.c in the Linux kernel before 2.6.28.6 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel memory via an SO_BSDCOMPAT getsockopt request.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

kernel-sock-information-disclosure(48847)

vdb-entry

x_refsource_XF

[oss-security] 20090220 CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt

mailing-list

x_refsource_MLIST

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_REDHAT

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

oval:org.mitre.oval:def:8618

vdb-entry

signature

x_refsource_OVAL

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_REDHAT

[oss-security] 20090302 Re: CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt

mailing-list

x_refsource_MLIST

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_DEBIAN

http://patchwork.kernel.org/patch/6816/

x_refsource_CONFIRM

vendor-advisory

x_refsource_DEBIAN

[linux-kernel] 20090223 net: amend the fix for SO_BSDCOMPAT gsopt infoleak

mailing-list

x_refsource_MLIST

third-party-advisory

x_refsource_SECUNIA

SUSE-SA:2009:030

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_UBUNTU

oval:org.mitre.oval:def:11653

vdb-entry

signature

x_refsource_OVAL

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_SECUNIA

20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components

mailing-list

x_refsource_BUGTRAQ

[oss-security] 20090224 Re: CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt

mailing-list

x_refsource_MLIST

SUSE-SA:2009:031

vendor-advisory

x_refsource_SUSE

SUSE-SA:2009:021

vendor-advisory

x_refsource_SUSE

[linux-kernel] 20090212 [PATCH] 4 bytes kernel memory disclosure in SO_BSDCOMPAT gsopt try #2

mailing-list

x_refsource_MLIST

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=df0bca049d01c0ee94afb7cd5dfd959541e6c8da

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=486305

x_refsource_CONFIRM

vendor-advisory

x_refsource_DEBIAN

vendor-advisory

x_refsource_MANDRIVA

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.28.6

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.