Note:
This project will be discontinued after December 13, 2021. [more]
2017-10-03
The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel before 4.13.4 allows local users to obtain sensitive information from uninitialized kernel heap-memory locations via an SG_GET_REQUEST_TABLE ioctl call for /dev/sg0.
| Products | Linux_kernel |
| Type | Information Exposure (CWE-200) |
| First patch |
https://github.com/torvalds/linux/commit/3e0097499839e0fe3af380410eababe5a47c4cf9 |
| Relevant file/s | ./drivers/scsi/sg.c (modified, +2, -3) |
| Links |
• http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.4
• http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=3e0097499839e0fe3af380410eababe5a47c4cf9 • http://www.securityfocus.com/bid/101187 • https://usn.ubuntu.com/3754-1/ |
Navigation
Patch data:
Patched area:
(on by default)
Patched area: