The cxgb_extension_ioctl function in drivers/net/cxgb3/cxgb3_main.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a CHELSIO_GET_QSET_NUM ioctl call.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2010-09-30T14:00:00
Updated: 2018-10-10T18:57:01
Reserved: 2010-09-13T00:00:00
Link: CVE-2010-3296
JSON object: View
NVD Information
Status : Modified
Published: 2010-09-30T15:00:02.723
Modified: 2023-02-13T04:22:59.883
Link: CVE-2010-3296
JSON object: View
Redhat Information
No data.
CWE