CVE-2011-2492

Published: Jul 28, 2011Modified: Apr 29, 2026

1.9

Vector

AV:L/AC:M/Au:N/C:P/I:N/A:N

Exploitability: 3.4 / Impact: 2.9

Source: NVD

Description

The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel memory via a crafted getsockopt system call, related to (1) the l2cap_sock_getsockopt_old function in net/bluetooth/l2cap_sock.c and (2) the rfcomm_sock_getsockopt_old function in net/bluetooth/rfcomm/sock.c.

Affected (10)

Products: Linux: Linux Kernel · Redhat: Enterprise Linux Aus, Enterprise Linux Desktop, Enterprise Linux Eus, Enterprise Linux Server, Enterprise Linux Workstation

1 product

5 products

Enterprise Linux Aus

Enterprise Linux Desktop

Enterprise Linux Eus

Enterprise Linux Server

Enterprise Linux Workstation

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Before 3.0
Linux Linux Kernel	Version 3.0
Linux Linux Kernel	Version 3.0 rc1
Linux Linux Kernel	Version 3.0 rc2
Linux Linux Kernel	Version 3.0 rc3

Configuration B

5 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux Aus	Version 5.6
Redhat Enterprise Linux Desktop	Version 5.0
Redhat Enterprise Linux Eus	Version 5.6
Redhat Enterprise Linux Server	Version 5.0
Redhat Enterprise Linux Workstation	Version 5.0

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (18)

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8d03e971cf403305217b8e62db3a2e5ad2d6263f

Source: secalert@redhat.com

http://marc.info/?l=bugtraq&m=139447903326211&w=2

Source: secalert@redhat.com

Third Party Advisory

http://permalink.gmane.org/gmane.linux.bluez.kernel/12909

Source: secalert@redhat.com

Broken Link

http://rhn.redhat.com/errata/RHSA-2011-0927.html

Source: secalert@redhat.com

Third Party Advisory

http://securitytracker.com/id?1025778

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

http://www.kernel.org/pub/linux/kernel/v3.0/testing/ChangeLog-3.0-rc4

Source: secalert@redhat.com

Broken Link

http://www.openwall.com/lists/oss-security/2011/06/24/2

Source: secalert@redhat.com

Mailing ListPatchThird Party Advisory

http://www.openwall.com/lists/oss-security/2011/06/24/3

Source: secalert@redhat.com

Mailing ListPatchThird Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=703019

Source: secalert@redhat.com

Issue TrackingPatchThird Party Advisory

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8d03e971cf403305217b8e62db3a2e5ad2d6263f

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=139447903326211&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://permalink.gmane.org/gmane.linux.bluez.kernel/12909

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://rhn.redhat.com/errata/RHSA-2011-0927.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://securitytracker.com/id?1025778

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.kernel.org/pub/linux/kernel/v3.0/testing/ChangeLog-3.0-rc4

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://www.openwall.com/lists/oss-security/2011/06/24/2

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListPatchThird Party Advisory

http://www.openwall.com/lists/oss-security/2011/06/24/3

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListPatchThird Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=703019

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingPatchThird Party Advisory

Timeline

No history available yet.