Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The osf_getsysinfo function in arch/alpha/kernel/osf_sys.c in the Linux kernel before 2.6.39.4 on the Alpha platform does not properly restrict the data size for GSI_GET_HWRPB operations, which allows local users to obtain sensitive information from kernel memory via a crafted call.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel ‘osf_getsysinfo’ 函数权限许可和访问控制问题漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 基于Alpha平台的Linux kernel 2.6.39.4之前版本中的arch/alpha/kernel/osf_sys.c中的osf_getsysinfo函数中存在漏洞,该漏洞源于未正确限制GSI_GET_HWRPB操作数据的大小。本地用户可利用该漏洞借助特制调用获得来自内核内存中的敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A