Security Advisory

CVE-2009-3001

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-08-28 15:00:00

Last updated 2024-08-07 06:07:37

Assigner mitre

State PUBLISHED

Description

The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel 2.6.31-rc7 and earlier does not initialize a certain data structure, which allows local users to read the contents of some kernel memory locations by calling getsockname on an AF_LLC socket.

← Browse all CVEs View on cve.org ↗