Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
probers/udisks-dm-export.c in udisks before 1.0.1 exports UDISKS_DM_TARGETS_PARAMS information to udev even for a crypt UDISKS_DM_TARGETS_TYPE, which allows local users to discover encryption keys by (1) running a certain udevadm command or (2) reading a certain file under /dev/.udev/db/.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Freedesktop udisks 'probers/udisks-dm-export.c' 本地信息泄露漏洞
Vulnerability Description
udisks(前称DeviceKit-disks)是一个Linux系统上的系统服务,它主要用于列举出设备并提供设备相关的信息。 udisks 1.0.1之前版本中的probers/udisks-dm-export.c,即使针对加密的UDISKS_DM_TARGETS_TYPE也会导出UDISKS_DM_TARGETS_PARAMS信息至udev。本地用户能够通过(1)运行某特定udevadm指令或(2)读取/dev/.udev/db/下的某特定文件发现加密密钥。
CVSS Information
N/A
Vulnerability Type
N/A