LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Btrfs aims for the mainline

The Android Dev Phone 1

LWN.net Weekly Edition for December 25, 2008

The Grumpy Editor's 2008 retrospective

The 2008 Linux and free software timeline

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

kernel: information disclosure

Package(s):kernel CVE #(s):CVE-2008-0598
Created:June 25, 2008 Updated:December 17, 2008
Description: From the Red Hat advisory: Tavis Ormandy discovered a deficiency in the Linux kernel 32-bit and 64-bit emulation. This could allow a local unprivileged user to prepare and run a specially crafted binary, which would use this deficiency to leak uninitialized and potentially sensitive data.
Alerts:
Debian DSA-1630-1 2008-08-21
Ubuntu USN-625-1 2008-07-15
CentOS CESA-2008:0508 2008-06-27
CentOS CESA-2008:0519 2008-06-26
Red Hat RHSA-2008:0519-01 2008-06-25
Red Hat RHSA-2008:0508-01 2008-06-25
Ubuntu USN-637-1 2008-08-25
SuSE SUSE-SA:2008:047 2008-10-01
SuSE SUSE-SA:2008:048 2008-10-01
SuSE SUSE-SA:2008:049 2008-10-02
Mandriva MDVSA-2008:220 2008-10-29
Mandriva MDVSA-2008:220-1 2008-11-19
Red Hat RHSA-2008:0973-03 2008-12-16
CentOS CESA-2008:0973 2008-12-17
(Log in to post comments)

Copyright © 2009, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds