Vulnerabilities

CVE-2016-4486

by Fred · 23/05/2016

The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message.

Date published : 2016-05-23

http://www.securityfocus.com/bid/90051

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5f8e44741f9f216e33736ea4ec65ca9ac03036e6

Similar

Tags: Cybersecurity Alert