Vulnerabilities

CVE-2016-4485

by Fred · 23/05/2016

The llc_cmsg_rcv function in net/llc/af_llc.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory by reading a message.

Date published : 2016-05-23

http://www.securityfocus.com/bid/90015

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b8670c09f37bdf2847cc44f36511a53afc6161fd

Similar

Tags: Cybersecurity Alert