Total vulnerabilities in the database
net/packet/af_packet.c in the Linux kernel before 2.6.37-rc2 does not properly initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory by leveraging the CAP_NET_RAW capability to read copies of the applicable structures.
| Software | From | Fixed in |
|---|---|---|
| linux / linux_kernel | 2.6.37-rc1 | 2.6.37-rc1.x |
| linux / linux_kernel | - | 2.6.37 |
| linux / linux_kernel | 2.6.37 | 2.6.37.x |
| suse / linux_enterprise_server | 10-sp3 | 10-sp3.x |
| suse / linux_enterprise_server | 9 | 9.x |
| opensuse / opensuse | 11.2 | 11.2.x |
| opensuse / opensuse | 11.3 | 11.3.x |
| suse / linux_enterprise_desktop | 10-sp3 | 10-sp3.x |
| suse / linux_enterprise_software_development_kit | 10-sp3 | 10-sp3.x |
| suse / linux_enterprise_real_time_extension | 11-sp1 | 11-sp1.x |
| debian / debian_linux | 5.0 | 5.0.x |