CVE-2009-3001
published 2009-08-28CVE-2009-3001: The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel 2.6.31-rc7 and earlier does not initialize a certain data structure, which allows local…
PriorityP420medium4.9CVSS 2.0
AVLACLAuNCCINAN
EXPLOIT
EPSS
1.02%
59.0th percentile
The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel 2.6.31-rc7 and earlier does not initialize a certain data structure, which allows local users to read the contents of some kernel memory locations by calling getsockname on an AF_LLC socket.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| linux | linux_kernel | < 2.6.31 | 2.6.31 |
| linux | linux_kernel | — | — |
CVSS provenance
nvdv2.04.9MEDIUMAV:L/AC:L/Au:N/C:C/I:N/A:N
vendor_redhat4.9MEDIUM
vendor_ubuntu4.4MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5pcq-rhwq-4w2j: The llc_ui_getname function in net/llc/af_llc
ghsa_unreviewed·2022-05-02
CVE-2009-3001 [MEDIUM] CWE-200 GHSA-5pcq-rhwq-4w2j: The llc_ui_getname function in net/llc/af_llc
The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel 2.6.31-rc7 and earlier does not initialize a certain data structure, which allows local users to read the contents of some kernel memory locations by calling getsockname on an AF_LLC socket.
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2009-10-22·CVSS 4.4
CVE-2009-3238 [MEDIUM] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Linux kernel vulnerabilities
Solar Designer discovered that the z90crypt driver did not correctly
check capabilities. A local attacker could exploit this to shut down
the device, leading to a denial of service. Only affected Ubuntu 6.06.
(CVE-2009-1883)
Michael Buesch discovered that the SGI GRU driver did not correctly check
the length when setting options. A local attacker could exploit this
to write to the kernel stack, leading to root privilege escalation or
a denial of service. Only affected Ubuntu 8.10 and 9.04. (CVE-2009-2584)
It was discovered that SELinux did not fully implement the mmap_min_addr
restrictions. A local attacker could exploit this to allocate the
NULL memory page which could lead to further attacks against kernel
NULL
Red Hat
kernel: numerous getname() infoleaks
vendor_redhat·2009-08-23·CVSS 4.9
CVE-2009-3001 [MEDIUM] kernel: numerous getname() infoleaks
kernel: numerous getname() infoleaks
The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel 2.6.31-rc7 and earlier does not initialize a certain data structure, which allows local users to read the contents of some kernel memory locations by calling getsockname on an AF_LLC socket.
Statement: Not vulnerable. This issue did not affect the versions of Linux kernel as shipped with Red Hat Enterprise Linux 3, 4, 5 or Red Hat Enterprise MRG. Red Hat does not provide support for PF_LLC sockets in the Linux kernels.
No detection rules found.
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=28e9fc592cb8c7a43e4d3147b38be6032a0e81bchttp://jon.oberheide.org/files/llc-getsockname-leak.chttp://secunia.com/advisories/37105http://www.exploit-db.com/exploits/9513http://www.openwall.com/lists/oss-security/2009/08/26/1http://www.securityfocus.com/bid/36126http://www.ubuntu.com/usn/USN-852-1https://bugzilla.redhat.com/show_bug.cgi?id=519305https://exchange.xforce.ibmcloud.com/vulnerabilities/52732http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=28e9fc592cb8c7a43e4d3147b38be6032a0e81bchttp://jon.oberheide.org/files/llc-getsockname-leak.chttp://secunia.com/advisories/37105http://www.exploit-db.com/exploits/9513http://www.openwall.com/lists/oss-security/2009/08/26/1http://www.securityfocus.com/bid/36126http://www.ubuntu.com/usn/USN-852-1https://bugzilla.redhat.com/show_bug.cgi?id=519305https://exchange.xforce.ibmcloud.com/vulnerabilities/52732
2009-08-28
Published