Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The mp_get_count function in drivers/staging/sb105x/sb_pci_mp.c in the Linux kernel before 3.12 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel ‘mp_get_count()’函数本地信息泄露漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 3.11.7及之前的版本中的drivers/staging/sb105x/sb_pci_mp.c文件中的‘mp_get_count’函数中存在安全漏洞,该漏洞源于程序没有初始化数据结构。本地攻击者可通过TIOCGICOUNT ioctl调用利用该漏洞获取内核栈内存中的敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A