Severity : |
Medium
|
Published : |
2013-04-22
|
Modified : |
2014-02-06
|
Base Score : |
4.9
|
Details : |
The bt_sock_recvmsg function in net/bluetooth/af_bluetooth.c in the Linux kernel before 3.9-rc7 does not properly initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.
|
Product/Version : |
CGE 5.x
Mobilinux 5.x
Pro 4.x
CGE 4.x
Mobilinux 4.x
Professional PRO 5.0
Professional PRO 5.0
MVL6 Kernel 2.6.27
|
|