Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The log_prefix function in kernel/printk.c in the Linux kernel 3.x before 3.4.33 does not properly remove a prefix string from a syslog header, which allows local users to cause a denial of service (buffer overflow and system crash) by leveraging /dev/kmsg write access and triggering a call_console_drivers function call.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel ‘call_console_drivers()’本地拒绝服务漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 3.4.33之前的3.x版本中的kernel/printk.c中的‘log_prefix’函数中存在漏洞,该漏洞源于程序没有正确地删除从系统日志标题中删除前缀字符串。通过利用对/dev/kmsg目录的写访问权限,触发‘call_console_drivers’函数的调用,本地攻击者利用该漏洞导致拒绝服务(缓冲区溢出和系统
CVSS Information
N/A
Vulnerability Type
N/A