Uninitialized Data Leak in econet_sendmsg Function

Uninitialized Data Leak in econet_sendmsg Function

CVE-2011-1173 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The econet_sendmsg function in net/econet/af_econet.c in the Linux kernel before 2.6.39 on the x86_64 platform allows remote attackers to obtain potentially sensitive information from kernel stack memory by reading uninitialized data in the ah field of an Acorn Universal Networking (AUN) packet.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.