QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2010-3876

Back to search

CVE-2010-3876

Published: Jan 3, 2011

Modified: Aug 7, 2024

PUBLISHED

Description

net/packet/af_packet.c in the Linux kernel before 2.6.37-rc2 does not properly initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory by leveraging the CAP_NET_RAW capability to read copies of the applicable structures.

VendorProductVersions

n/a

n/a

affected
n/a

References

42789
third-party-advisory
x_refsource_SECUNIA
ADV-2011-0024
vdb-entry
x_refsource_VUPEN
RHSA-2011:0004
vendor-advisory
x_refsource_REDHAT
46397
third-party-advisory
x_refsource_SECUNIA
RHSA-2011:0007
vendor-advisory
x_refsource_REDHAT
RHSA-2010:0958
vendor-advisory
x_refsource_REDHAT
42963
third-party-advisory
x_refsource_SECUNIA
42890
third-party-advisory
x_refsource_SECUNIA
RHSA-2011:0162
vendor-advisory
x_refsource_REDHAT
ADV-2011-0168
vdb-entry
x_refsource_VUPEN
44630
vdb-entry
x_refsource_BID
DSA-2126
vendor-advisory
x_refsource_DEBIAN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now
CVE-2010-3876 - Security Vulnerability | QwikSec