The ethtool_get_rxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize a certain block of heap memory, which allows local users to obtain potentially sensitive information via an ETHTOOL_GRXCLSRLALL ethtool command with a large info.rule_cnt value, a different vulnerability than CVE-2010-2478.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2010-12-10T18:00:00
Updated: 2011-01-15T10:00:00
Reserved: 2010-10-08T00:00:00
Link: CVE-2010-3861
JSON object: View
NVD Information
Status : Modified
Published: 2010-12-10T19:00:04.127
Modified: 2023-02-13T04:27:00.973
Link: CVE-2010-3861
JSON object: View
Redhat Information
No data.
CWE