CVE-2006-1343

Priority
Untriaged
Description
net/ipv4/netfilter/ip_conntrack_core.c in Linux kernel 2.4 and 2.6, and
possibly net/ipv4/netfilter/nf_conntrack_l3proto_ipv4.c in 2.6, does not
clear sockaddr_in.sin_zero before returning IPv4 socket names from the
getsockopt function with SO_ORIGINAL_DST, which allows local users to
obtain portions of potentially sensitive memory.
References
Package
Upstream:needs-triage
Ubuntu 12.10 (Quantal Quetzal):DNE
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:16:59 UTC (commit 5347)