The main function in tools/hv/hv_kvp_daemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of Netlink messages, which allows local users to spoof Netlink communication via a crafted connector message.
References
Configurations
Configuration 1 (hide)
|
History
13 Feb 2023, 00:25
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2012-12-27 11:47
Updated : 2023-12-10 11:16
NVD link : CVE-2012-2669
Mitre link : CVE-2012-2669
CVE.ORG link : CVE-2012-2669
JSON object : View
Products Affected
linux
- linux_kernel
CWE
CWE-20
Improper Input Validation