Security Advisory

CVE-2009-0676

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-02-22 22:00:00

Last updated 2024-08-07 04:40:05

Assigner mitre

State PUBLISHED

Description

The sock_getsockopt function in net/core/sock.c in the Linux kernel before 2.6.28.6 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel memory via an SO_BSDCOMPAT getsockopt request.

← Browse all CVEs View on cve.org ↗