A flaw was found in the Linux kernels implementation of Userspace core dumps. This flaw allows an attacker with a local account to crash a trivial program and exfiltrate private kernel data.
The product uses or accesses a resource that has not been initialized.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | * | 3.16.85 (excluding) |
Linux_kernel | Linux | 4.4 (including) | 4.4.226 (excluding) |
Linux_kernel | Linux | 4.9 (including) | 4.9.226 (excluding) |
Linux_kernel | Linux | 4.14 (including) | 4.14.183 (excluding) |
Linux_kernel | Linux | 4.19 (including) | 4.19.126 (excluding) |
Linux_kernel | Linux | 5.4 (including) | 5.4.44 (excluding) |
Linux_kernel | Linux | 5.6 (including) | 5.6.16 (excluding) |