CVE-2011-2909 (retired)

Priority
Description
The do_devinfo_ioctl function in drivers/staging/comedi/comedi_fops.c in
the Linux kernel before 3.1 allows local users to obtain sensitive
information from kernel memory via a copy of a short string.
Ubuntu-Description
Vasiliy Kulikov discovered that the Comedi driver did not correctly clear
memory. A local attacker could exploit this to read kernel stack memory,
leading to a loss of privacy.
Notes
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (3.1~rc1)
Patches:
Introduced by
ed9eccbe8970f6eedc1b978c157caf1251a896d4
Fixed by
819cbb120eaec7e014e5abd029260db1ca8c5735
Package
Upstream:released (3.1~rc1)
Package
Upstream:released (3.1~rc1)
Package
Upstream:released (3.1~rc1)
Package
Upstream:released (3.1~rc1)
Package
Upstream:released (3.1~rc1)
Package
Upstream:released (3.1~rc1)
Package
Upstream:released (3.1~rc1)
More Information

Updated: 2019-10-09 07:37:55 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)