CVE-2012-6549 : The isofs_export_encode_fh function in fs/isofs/export.c in the Linux kernel before 3.6 does not initialize a certain st

The isofs_export_encode_fh function in fs/isofs/export.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel heap memory via a crafted application.

Published 2013-03-15 20:55:08

Updated 2013-08-22 06:48:05

Source MITRE

View at NVD, CVE.org

Vulnerability category: Information leak

Threat overview for CVE-2012-6549

Top countries where our scanners detected CVE-2012-6549

Top open port discovered on systems with this issue 49152

IPs affected by CVE-2012-6549 158,793

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2012-6549!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2012-6549

Probability of exploitation activity in the next 30 days: 0.12%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 45 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2012-6549

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
1.9	LOW	AV:L/AC:M/Au:N/C:P/I:N/A:N	3.4	2.9	NIST
Access Vector: Local Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

CWE ids for CVE-2012-6549

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2012-6549

http://www.ubuntu.com/usn/USN-1813-1

USN-1813-1: Linux kernel vulnerabilities | Ubuntu security notices

CVEs referencing this url
https://github.com/torvalds/linux/commit/fe685aabf7c8c9f138e5ea900954d295bf229175

isofs: avoid info leak on export · torvalds/linux@fe685aa · GitHub
http://www.openwall.com/lists/oss-security/2013/03/05/13

oss-security - CVE Requests (maybe): Linux kernel: various info leaks, some NULL ptr derefs

CVEs referencing this url
http://www.ubuntu.com/usn/USN-1812-1

USN-1812-1: Linux kernel (Quantal HWE) vulnerabilities | Ubuntu security notices

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00018.html

[security-announce] openSUSE-SU-2013:1187-1: important: 3.0.80 kernel up

CVEs referencing this url
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=fe685aabf7c8c9f138e5ea900954d295bf229175

kernel/git/torvalds/linux.git - Linux kernel source tree
https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.6.bz2

Patch

CVEs referencing this url
http://www.ubuntu.com/usn/USN-1829-1

USN-1829-1: Linux kernel (EC2) vulnerabilities | Ubuntu security notices

CVEs referencing this url
http://www.ubuntu.com/usn/USN-1811-1

USN-1811-1: Linux kernel (OMAP4) vulnerabilities | Ubuntu security notices

CVEs referencing this url
http://www.mandriva.com/security/advisories?name=MDVSA-2013:176

mandriva.com

CVEs referencing this url
http://www.ubuntu.com/usn/USN-1814-1

USN-1814-1: Linux kernel (OMAP4) vulnerabilities | Ubuntu security notices

CVEs referencing this url
http://www.ubuntu.com/usn/USN-1809-1

USN-1809-1: Linux kernel vulnerabilities | Ubuntu security notices

CVEs referencing this url

Products affected by CVE-2012-6549