CVE-2012-6548

Published: Mar 14, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

The udf_encode_fh function in fs/udf/namei.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel heap memory via a crafted application.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

openSUSE-SU-2013:1187

vendor-advisory

x_refsource_SUSE

USN-1812-1

vendor-advisory

x_refsource_UBUNTU

USN-1805-1

vendor-advisory

x_refsource_UBUNTU

MDVSA-2013:176

vendor-advisory

x_refsource_MANDRIVA

RHSA-2013:1051

vendor-advisory

x_refsource_REDHAT

[oss-security] 20130305 CVE Requests (maybe): Linux kernel: various info leaks, some NULL ptr derefs

mailing-list

x_refsource_MLIST

USN-1808-1

vendor-advisory

x_refsource_UBUNTU

USN-1809-1

vendor-advisory

x_refsource_UBUNTU

https://github.com/torvalds/linux/commit/0143fc5e9f6f5aad4764801015bc8d4b4a278200

x_refsource_CONFIRM

USN-1814-1

vendor-advisory

x_refsource_UBUNTU

https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2

x_refsource_CONFIRM

USN-1813-1

vendor-advisory

x_refsource_UBUNTU

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0143fc5e9f6f5aad4764801015bc8d4b4a278200

x_refsource_CONFIRM

USN-1811-1

vendor-advisory

x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-6548

Description

Affected Products

References