Linux » Linux Kernel : Security Vulnerabilities, CVEs, Published In February 2013 (Information Leak)
The hidp_setup_hid function in net/bluetooth/hidp/core.c in the Linux kernel before 3.7.6 does not properly copy a certain name field, which allows local users to obtain sensitive information from kernel memory by setting a long name and making an HIDPCONNADD ioctl call.
Max CVSS
1.9
EPSS Score
0.04%
Published
2013-02-28
Updated
2023-02-13
The Linux kernel through 3.7.9 allows local users to obtain sensitive information about keystroke timing by using the inotify API on the /dev/ptmx device.
Max CVSS
2.1
EPSS Score
0.05%
Published
2013-02-18
Updated
2017-11-29
The load_script function in fs/binfmt_script.c in the Linux kernel before 3.7.2 does not properly handle recursion, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.
Max CVSS
2.1
EPSS Score
0.05%
Published
2013-02-18
Updated
2023-02-13
3 vulnerabilities found