Vulnerabilities

CVE-2016-7916

by Fred · 15/11/2016

Race condition in the environ_read function in fs/proc/base.c in the Linux kernel before 4.5.4 allows local users to obtain sensitive information from kernel memory by reading a /proc/*/environ file during a process-setup time interval in which environment-variable copying is incomplete.

Date published : 2016-11-15

http://www.securityfocus.com/bid/94138

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=8148a73c9901a8794a50f950083c00ccf97d43b3

Similar

Tags: Cybersecurity Alert