CVE-2012-0957

Published: Dec 21, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

The override_release function in kernel/sys.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from kernel stack memory via a uname system call in conjunction with a UNAME26 personality.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

USN-1644-1

vendor-advisory

x_refsource_UBUNTU

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.16

x_refsource_CONFIRM

USN-1645-1

vendor-advisory

x_refsource_UBUNTU

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2702b1526c7278c4d65d78de209a465d4de2885e

x_refsource_CONFIRM

USN-1647-1

vendor-advisory

x_refsource_UBUNTU

USN-1652-1

vendor-advisory

x_refsource_UBUNTU

USN-1646-1

vendor-advisory

x_refsource_UBUNTU

https://bugzilla.redhat.com/show_bug.cgi?id=862877

x_refsource_CONFIRM

FEDORA-2012-17479

vendor-advisory

x_refsource_FEDORA

https://github.com/torvalds/linux/commit/2702b1526c7278c4d65d78de209a465d4de2885e

x_refsource_CONFIRM

USN-1648-1

vendor-advisory

x_refsource_UBUNTU

USN-1649-1

vendor-advisory

x_refsource_UBUNTU

51409

third-party-advisory

x_refsource_SECUNIA

[oss-security] 20121009 Linux kernel stack memory content leak via UNAME26

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-0957

Description

Affected Products

References