Skip to main content

Configuration

CVE-2012-0957

Severity Medium
Score 4.9/10

Summary

The override_release function in kernel/sys.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from kernel stack memory via a uname system call in conjunction with a UNAME26 personality.

  • LOW
  • LOCAL
  • NONE
  • NONE
  • COMPLETE
  • NONE

CWE-16 - Configuration

Weaknesses in this category are typically introduced during the configuration of the software.

References

Advisory Timeline

  • Published