Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The USB subsystem in the Linux kernel before 2.6.36-rc5 does not properly initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to TIOCGICOUNT ioctl calls, and the (1) mos7720_ioctl function in drivers/usb/serial/mos7720.c and (2) mos7840_ioctl function in drivers/usb/serial/mos7840.c.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel USB子系统信息泄露漏洞
Vulnerability Description
Linux Kernel 是开放源码操作系统Linux所使用的内核。 Linux kernel 2.6.36-rc5之前版本中的USB子系统没有正确初始化某些结构体成员。本地用户可以借助和TIOCGICOUNT输入输出控制调用有关的向量,以及(1)drivers/usb/serial/mos7720.c文件中的mos7720_ioctl函数,(2)drivers/usb/serial/mos7840.c文件中的mos7840_ioctl函数,从内核栈内存中获取潜在敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A