Vulnerabilities

CVE-2010-4072

by Fred · 29/11/2010

The copy_shmid_to_user function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the shmctl system call and the "old shm interface."

Date published : 2010-11-29

http://www.securityfocus.com/bid/45054

http://www.securityfocus.com/archive/1/520102/100/0/threaded

Related

Tags: Cybersecurity Alert