Your submission was sent successfully! Close

CVE-2009-1192

Published: 24 April 2009

The (1) agp_generic_alloc_page and (2) agp_generic_alloc_pages functions in drivers/char/agp/generic.c in the agp subsystem in the Linux kernel before 2.6.30-rc3 do not zero out pages that may later be available to a user-space process, which allows local users to obtain sensitive information by reading these pages.

Priority

Low

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy
Released (2.6.24-24.55)
intrepid
Released (2.6.27-14.35)
jaunty
Released (2.6.28-13.45)
upstream Needed

linux-source-2.6.15
Launchpad, Ubuntu, Debian
dapper
Released (2.6.15-54.77)
hardy Does not exist

intrepid Does not exist

jaunty Does not exist

upstream Needed