Vulnerability identifier: #VU92658
Vulnerability risk: Low
CVSSv3.1: 5 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-200
Exploitation vector: Local
Exploit availability: Yes
Vulnerable software:
Linux kernel
Operating systems & Components /
Operating system
Vendor: Linux Foundation
Description
The vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to information exposure error within the llc_ui_getname() function in net/llc/af_llc.c. A local user can gain access to sensitive information.
Mitigation
Install update from vendor's repository.
Vulnerable software versions
Linux kernel:
External links
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=28e9fc592cb8c7a43e4d3147b38be6032a0e81bc
http://jon.oberheide.org/files/llc-getsockname-leak.c
http://secunia.com/advisories/37105
http://www.exploit-db.com/exploits/9513
http://www.openwall.com/lists/oss-security/2009/08/26/1
http://www.securityfocus.com/bid/36126
http://www.ubuntu.com/usn/USN-852-1
http://bugzilla.redhat.com/show_bug.cgi?id=519305
http://exchange.xforce.ibmcloud.com/vulnerabilities/52732
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.