Vulnerabilities

CVE-2016-5243

by Fred · 27/06/2016

The tipc_nl_compat_link_dump function in net/tipc/netlink_compat.c in the Linux kernel through 4.6.3 does not properly copy a certain string, which allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message.

Date published : 2016-06-27

http://www.securityfocus.com/bid/91334

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=5d2be1422e02ccd697ccfcd45c85b4a26e6178e2

Similar

Tags: Cybersecurity Alert