NuytsTech Security

CVE-2005-3276

by ·

The sys_get_thread_area function in process.c in Linux 2.6 before 2.6.12.4 and 2.6.13 does not clear a data structure before copying it to userspace, which might allow a user process to obtain sensitive information.

Date published : 2005-10-20

http://www.securityfocus.com/bid/15527

http://linux.bkbits.net:8080/linux-2.6/cset@42e81864gSEM90Oun0jA8dufpM3inw

Tags: