The eql_g_master_cfg function in drivers/net/eql.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an EQL_GETMASTRCFG ioctl call.
The product does not initialize a critical resource.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | 2.6.36 | 2.6.36 |
Linux_kernel | Linux | 2.6.36 | 2.6.36 |
Linux_kernel | Linux | 2.6.36 | 2.6.36 |
Linux_kernel | Linux | 2.6.36 | 2.6.36 |
Linux_kernel | Linux | * | * |
Linux_kernel | Linux | 2.6.36 | 2.6.36 |