CVE-2012-6537

Published: Mar 14, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

net/xfrm/xfrm_user.c in the Linux kernel before 3.6 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capability.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f778a636713a435d3a922c60b1622a91136560c1

x_refsource_CONFIRM

[oss-security] 20130305 CVE Requests (maybe): Linux kernel: various info leaks, some NULL ptr derefs

mailing-list

x_refsource_MLIST

https://github.com/torvalds/linux/commit/7b789836f434c87168eab067cfbed1ec4783dffd

x_refsource_CONFIRM

USN-1792-1

vendor-advisory

x_refsource_UBUNTU

https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2

x_refsource_CONFIRM

RHSA-2013:0744

vendor-advisory

x_refsource_REDHAT

https://github.com/torvalds/linux/commit/1f86840f897717f86d523a13e99a447e6a5d2fa5

x_refsource_CONFIRM

USN-1798-1

vendor-advisory

x_refsource_UBUNTU

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1f86840f897717f86d523a13e99a447e6a5d2fa5

x_refsource_CONFIRM

https://github.com/torvalds/linux/commit/f778a636713a435d3a922c60b1622a91136560c1

x_refsource_CONFIRM

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7b789836f434c87168eab067cfbed1ec4783dffd

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-6537

Description

Affected Products

References