CVE-2011-2492

The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel memory via a crafted getsockopt system call, related to (1) the l2cap_sock_getsockopt_old function in net/bluetooth/l2cap_sock.c and (2) the rfcomm_sock_getsockopt_old function in net/bluetooth/rfcomm/sock.c.

Published: Jul 29, 2011
Updated: Apr 13, 2023
CVE: CVE-2011-2492
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 1.9
AV:L/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	3.0-rc2	3.0-rc2.x
linux / linux_kernel	3.0-rc3	3.0-rc3.x
linux / linux_kernel	3.0-rc1	3.0-rc1.x
linux / linux_kernel	-	3.0
linux / linux_kernel	3.0	3.0.x
redhat / enterprise_linux_server	5.0	5.0.x
redhat / enterprise_linux_workstation	5.0	5.0.x
redhat / enterprise_linux_desktop	5.0	5.0.x
redhat / enterprise_linux_eus	5.6	5.6.x
redhat / enterprise_linux_aus	5.6	5.6.x

Vulnerability Database

289,599

CVE-2011-2492