Linux » Linux Kernel : Security Vulnerabilities, CVEs, Published In 2012 (Bypass)
The Netlink implementation in the Linux kernel before 3.2.30 does not properly handle messages that lack SCM_CREDENTIALS data, which might allow local users to spoof Netlink communication via a crafted message, as demonstrated by a message to (1) Avahi or (2) NetworkManager.
Max CVSS
1.9
EPSS Score
0.04%
Published
2012-10-03
Updated
2023-02-13
1 vulnerabilities found