Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Linux drivers/char/lp.c Out-of-Bounds Write. Due to a missing bounds check, and the fact that parport_ptr integer is static, a 'secure boot' kernel command line adversary (can happen due to bootloader vulns, e.g. Google Nexus 6's CVE-2016-10277, where due to a vulnerability the adversary has partial control over the command line) can overflow the parport_nr array in the following code, by appending many (>LP_NO) 'lp=none' arguments to the command line.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel 数字错误漏洞
Vulnerability Description
Linux是一款开放源代码的操作系统,是一类Unix计算机操作系统的统称。 Linux中的drivers/char/lp.c文件存在整数溢出漏洞,该漏洞源于程序没有执行边界检测。攻击者可利用该漏洞溢出parport_nr数组。以下版本受到影响:Linux 4.12-rc1及之前的版本,3.x版本,2.6.x版本,2.4.x版本,2.2.x版本。
CVSS Information
N/A
Vulnerability Type
N/A