The sisfb_ioctl function in drivers/video/sis/sis_main.c in the Linux kernel before 2.6.36-rc6 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an FBIOGET_VBLANK ioctl call.
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html
http://secunia.com/advisories/42778
http://secunia.com/advisories/42801
http://www.debian.org/security/2010/dsa-2126
http://www.kernel.org/pub/linux/kernel/v2.6/testing/v2.6.36/ChangeLog-2.6.36-rc6
http://www.mandriva.com/security/advisories?name=MDVSA-2011:051
http://www.openwall.com/lists/oss-security/2010/09/25/2
http://www.openwall.com/lists/oss-security/2010/10/06/6
http://www.openwall.com/lists/oss-security/2010/10/07/1
http://www.openwall.com/lists/oss-security/2010/10/25/3
http://www.securityfocus.com/bid/43810
http://www.vupen.com/english/advisories/2011/0012
OR
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.36:-:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.36:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.36:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:2.6.36:rc3:*:*:*:*:*:*
OR
cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_desktop:10:sp3:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_real_time_extension:11:sp1:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp3:*:*:*:*:*:*
OR
ID | Name | Product | Family | Severity |
---|---|---|---|---|
75553 | openSUSE Security Update : kernel (openSUSE-SU-2011:0004-1) | Nessus | SuSE Local Security Checks | high |
59153 | SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 7261) | Nessus | SuSE Local Security Checks | high |
53741 | openSUSE Security Update : kernel-debug (openSUSE-SU-2011:0003-1) | Nessus | SuSE Local Security Checks | high |
53670 | openSUSE Security Update : kernel (openSUSE-SU-2010:1047-1) | Nessus | SuSE Local Security Checks | high |
52476 | Ubuntu 9.10 : linux, linux-ec2 vulnerabilities (USN-1073-1) | Nessus | Ubuntu Local Security Checks | high |
52475 | Ubuntu 8.04 LTS : linux vulnerabilities (USN-1072-1) | Nessus | Ubuntu Local Security Checks | high |
52474 | Ubuntu 6.06 LTS : linux-source-2.6.15 vulnerabilities (USN-1071-1) | Nessus | Ubuntu Local Security Checks | high |
51158 | SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 7257) | Nessus | SuSE Local Security Checks | high |
50825 | Debian DSA-2126-1 : linux-2.6 - privilege escalation/denial of service/information leak | Nessus | Debian Local Security Checks | high |