CVE-2020-11494

CVE-2020-11494

An issue was discovered in slc_bump in drivers/net/can/slcan.c in the Linux kernel through 5.6.2. It allows attackers to read uninitialized can_frame data, potentially containing sensitive information from kernel stack memory, if the configuration lacks CONFIG_INIT_STACK_ALL, aka CID-b9258a2cece4.

Source: CVE-2020-11494

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다