CVE-2016-4486 (linux_kernel)

Posted on 2016년 5월 23일2016년 5월 25일 by admin

The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message.

Source: CVE-2016-4486 (linux_kernel)

답글 남기기 응답 취소