CVE-2010-3881
Bug #717124 reported by
Stefan Bader
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Fix Released
|
Low
|
Unassigned | ||
Dapper |
Invalid
|
Low
|
Unassigned | ||
Hardy |
Invalid
|
Low
|
Unassigned | ||
Karmic |
Invalid
|
Low
|
Unassigned | ||
Lucid |
Fix Released
|
Low
|
Unassigned | ||
Maverick |
Fix Released
|
Low
|
Unassigned | ||
Natty |
Fix Released
|
Low
|
Unassigned |
Bug Description
arch/x86/kvm/x86.c in the Linux kernel before 2.6.36.2 does not initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory via read operations on the /dev/kvm device.
CVE References
Changed in linux (Ubuntu Natty): | |
assignee: | Stefan Bader (stefan-bader-canonical) → nobody |
To post a comment you must log in.
Upstream fix in 2.6.37-rc2.