NVD

Id
45906  
Name
CVE-2012-4530  
Description
The load_script function in fs/binfmt_script.c in the Linux kernel before 3.7.2 does not properly handle recursion, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.  
Reject
 
CVSS Version
2  
CVSS Score
2.1  
Severity
Low  
CVSS Base Score
2.1  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2013-02-17  
Modified Date
2013-06-04  
Seq
2012-4530  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
230533 45906 CVE-2012-4530 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=b66c5984017533316fd1951770302649baf1aa33  View
230534 45906 CVE-2012-4530 SUSE-SU-2013:0674  View
230535 45906 CVE-2012-4530 RHSA-2013:0223  View
230536 45906 CVE-2012-4530 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.7.2  View
230537 45906 CVE-2012-4530 [oss-security] 20121019 Re: CVE Request -- kernel stack disclosure in binfmt_script load_script()  View
230538 45906 CVE-2012-4530 https://bugzilla.redhat.com/show_bug.cgi?id=868285  View
230539 45906 CVE-2012-4530 https://github.com/torvalds/linux/commit/b66c5984017533316fd1951770302649baf1aa33  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
20020 JVNDB-2013-001595 Linux Kernel の fs/binfmt_script.c の load_script 関数における重要な情報を取得される脆弱性 Linux Kernel の fs/binfmt_script.c の load_script 関数は、再帰を適切に処理しないため、カーネルスタックメモリから重要な情報を取得される脆弱性が存在します。 CVE-2012-4530 57768 CVE-2012-4530 45906 2.1 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-001595.html 2013-01-11 2013-02-19 View