Back to search
CVE-2018-7273
Published: Feb 21, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
In the Linux kernel through 4.15.4, the floppy driver reveals the addresses of kernel functions and global variables using printk calls within the function show_floppy in drivers/block/floppy.c. An attacker can read this information from dmesg and use the addresses to find the locations of kernel code and data and bypass kernel security protections such as KASLR.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://lkml.org/lkml/2018/2/20/669
x_refsource_MISC
44325
exploit
x_refsource_EXPLOIT-DB
103088
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now