CVE-2008-0598

Priority
Description
Unspecified vulnerability in the 32-bit and 64-bit emulation in the Linux
kernel 2.6.9, 2.6.18, and probably other versions allows local users to
read uninitialized memory via unknown vectors involving a crafted binary.
Ubuntu-Description
Tavis Ormandy discovered that the ia32 emulation under 64bit kernels
did not fully clear uninitialized data. A local attacker could read
private kernel memory, leading to a loss of privacy.
Notes
keesneeds http://lkml.org/lkml/diff/2008/6/25/157/1
maybe linux-2.6: 64649a58919e66ec21792dbb6c48cb3da22cbd7f
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.24)
Package
Upstream:needed
Package
Upstream:not-affected
Package
Upstream:not-affected
Package
Upstream:not-affected
More Information

Updated: 2020-03-18 21:57:52 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)