** Changed in: linux-ec2 (Ubuntu Lucid)
Status: New => Invalid
** Changed in: linux (Ubuntu Lucid)
Status: New => Invalid
** Changed in: linux (Ubuntu Hardy)
Status: New => Invalid
** Description changed:
The ccid3_hc_tx_getsockopt function in net/dccp/ccids/ccid3.c in the
Linux kernel before 3.6 does not initialize a certain structure, which
allows local users to obtain sensitive information from kernel stack
memory via a crafted application.
- Break-Fix: - 7b07f8eb75aa3097cdfd4f6eac3da49db787381d
+ Break-Fix: 67b67e365f07d6dc70f3bb266af3268bac0a4836
+ 7b07f8eb75aa3097cdfd4f6eac3da49db787381d
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1156738
Title:
CVE-2012-6541
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1156738/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
