CVE-2015-7885

Published: Dec 28, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

The dgnc_mgmt_ioctl function in drivers/staging/dgnc/dgnc_mgmt.c in the Linux kernel through 4.3.3 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory via a crafted application.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

USN-2841-2

vendor-advisory

x_refsource_UBUNTU

77317

vdb-entry

x_refsource_BID

USN-2843-1

vendor-advisory

x_refsource_UBUNTU

USN-2844-1

vendor-advisory

x_refsource_UBUNTU

USN-2842-2

vendor-advisory

x_refsource_UBUNTU

USN-2843-2

vendor-advisory

x_refsource_UBUNTU

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4b6184336ebb5c8dc1eae7f7ab46ee608a748b05

x_refsource_CONFIRM

USN-2842-1

vendor-advisory

x_refsource_UBUNTU

[oss-security] 20151021 Re: CVE Request: Linux Kernel ioctl infoleaks on vivid-osd and dgnc

mailing-list

x_refsource_MLIST

1034896

vdb-entry

x_refsource_SECTRACK

https://github.com/torvalds/linux/commit/4b6184336ebb5c8dc1eae7f7ab46ee608a748b05

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=1274728

x_refsource_CONFIRM

USN-2841-1

vendor-advisory

x_refsource_UBUNTU

USN-2843-3

vendor-advisory

x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2015-7885

Description

Affected Products

References