** Description changed: The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel memory via a crafted getsockopt system call, related to (1) the l2cap_sock_getsockopt_old function in net/bluetooth/l2cap_sock.c and (2) the rfcomm_sock_getsockopt_old function in net/bluetooth/rfcomm/sock.c. - Fixed-by: 8d03e971cf403305217b8e62db3a2e5ad2d6263f + Break-Fix: - 8d03e971cf403305217b8e62db3a2e5ad2d6263f
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/819569 Title: CVE-2011-2492 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/819569/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
