The (1) agp_generic_alloc_page and (2) agp_generic_alloc_pages functions in drivers/char/agp/generic.c in the agp subsystem in the Linux kernel before 2.6.30-rc3 do not zero out pages that may later be available to a user-space process, which allows local users to obtain sensitive information by reading these pages.
References
Configurations
Configuration 1 (hide)
|
History
13 Feb 2023, 01:17
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2009-04-24 15:30
Updated : 2023-12-10 10:51
NVD link : CVE-2009-1192
Mitre link : CVE-2009-1192
CVE.ORG link : CVE-2009-1192
JSON object : View
Products Affected
linux
- linux_kernel
CWE