CVE-2009-3002

Name	CVE-2009-3002
Description	The Linux kernel before 2.6.31-rc7 does not initialize certain data structures within getname functions, which allows local users to read the contents of some kernel memory locations by calling getsockname on (1) an AF_APPLETALK socket, related to the atalk_getname function in net/appletalk/ddp.c; (2) an AF_IRDA socket, related to the irda_getname function in net/irda/af_irda.c; (3) an AF_ECONET socket, related to the econet_getname function in net/econet/af_econet.c; (4) an AF_NETROM socket, related to the nr_getname function in net/netrom/af_netrom.c; (5) an AF_ROSE socket, related to the rose_getname function in net/rose/af_rose.c; or (6) a raw CAN socket, related to the raw_getname function in net/can/raw.c.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-1915-1, DSA-1928-1, DSA-1929-1

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin
linux-2.6	source	etch	2.6.18.dfsg.1-26etch1		DSA-1929-1
linux-2.6	source	lenny	2.6.26-19lenny1		DSA-1915-1
linux-2.6	source	(unstable)	2.6.30-7	low
linux-2.6.24	source	etch	2.6.24-6~etchnhalf.9etch1		DSA-1928-1
linux-2.6.24	source	(unstable)	(unfixed)

Notes

minor info leaks