CVE-2017-5550

CVE-2017-5550

Off-by-one error in the pipe_advance function in lib/iov_iter.c in the Linux kernel before 4.9.5 allows local users to obtain sensitive information from uninitialized heap-memory locations in opportunistic circumstances by reading from a pipe after an incorrect buffer-release decision.

Source: CVE-2017-5550

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다