CVE-2012-3430
Description
The rds_recvmsg function in net/rds/recv.c in the Linux kernel before 3.0.44 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a (1) recvfrom or (2) recvmsg system call on an RDS socket.
Risk Information
Base Score
9.1
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
EPSS Score
Exploitation Probability
0.177
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-1579-1) linux-image-3.2.0-31-generic_3.2.0-31.50_i386.deb | Linux |
| Linux kernel (USN-1579-1) linux-image-3.2.0-31-generic_3.2.0-31.50_amd64.deb | Linux |
| Linux kernel (USN-1579-1) linux-image-3.2.0-31-virtual_3.2.0-31.50_i386.deb | Linux |
| Linux kernel (USN-1579-1) linux-image-3.2.0-31-virtual_3.2.0-31.50_amd64.deb | Linux |
| Linux kernel (USN-1579-1) linux-image-3.2.0-31-generic-pae_3.2.0-31.50_i386.deb | Linux |
| SUSE-SU-2019:14051-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.90.1.i586.rpm | Linux |
| SUSE-SU-2019:14051-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-default-extra-3.0.101-108.90.1.x86_64.rpm | Linux |
| SUSE-SU-2019:14051-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-pae-extra-3.0.101-108.90.1.i586.rpm | Linux |
| SUSE-SU-2019:14051-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-trace-extra-3.0.101-108.90.1.x86_64.rpm | Linux |
| SUSE-SU-2019:14051-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.90.1.i586.rpm | Linux |
| SUSE-SU-2019:14051-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-xen-extra-3.0.101-108.90.1.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234