Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
net/llc/sysctl_net_llc.c in the Linux kernel before 3.19 uses an incorrect data type in a sysctl table, which allows local users to obtain potentially sensitive information from kernel memory or possibly have unspecified other impact by accessing a sysctl entry.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel 代码注入漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 3.18.7及之前版本的net/llc/sysctl_net_llc.c文件中存在安全漏洞,该漏洞源于sysctl表单中存在不安全的数据类型。本地攻击者可通过访问sysctl条目利用该漏洞获取内核内存中潜在的敏感信息,也可能造成其他影响。
CVSS Information
N/A
Vulnerability Type
N/A