Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The bcm_connect function in net/can/bcm.c (aka the Broadcast Manager) in the Controller Area Network (CAN) implementation in the Linux kernel 2.6.36 and earlier creates a publicly accessible file with a filename containing a kernel memory address, which allows local users to obtain potentially sensitive information about kernel memory use by listing this filename.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel CAN实现bcm_connect函数敏感信息泄露漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 2.6.36.2及之前版本中的Controller Area Network(CAN)实现中的net/can/bcm.c(又名Broadcast Manager)文件中的bcm_connect函数创建了一个具有公开访问权限的文件,并且文件名中包含内核内存地址。本地用户可以通过罗列文件名称获取关于内核内存的潜在敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A