製品・ソフトウェアに関する情報

JVN脆弱性詳細

Linux kernel の tc_fill_tclass 関数における重要な情報を取得される脆弱性

Title	Linux kernel の tc_fill_tclass 関数における重要な情報を取得される脆弱性
Summary	Linux kernel の tc_fill_tclass 関数には、構造体メンバの tcm__pad1 および tcm__pad2 を初期化しないため、Kernel メモリから重要な情報を取得される脆弱性が存在します。
Possible impacts	ローカルユーザに重要な情報を取得される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Oct. 19, 2009, midnight
Registration Date	Dec. 2, 2009, 2:53 p.m.
Last Update	Jan. 26, 2010, 11:37 a.m.

CVSS2.0 : 警告
Score	4.9
Vector	AV:L/AC:L/Au:N/C:C/I:N/A:N

Affected System

レッドハット

Red Hat Enterprise Linux 5

Red Hat Enterprise Linux 5 (server)

Red Hat Enterprise Linux 4 (as)

Red Hat Enterprise Linux 4 (es)

Red Hat Enterprise Linux 4 (ws)

Red Hat Enterprise Linux 4.8 (as)

Red Hat Enterprise Linux 4.8 (es)

Red Hat Enterprise Linux Desktop 4.0

Red Hat Enterprise Linux Desktop 5.0 (client)

Red Hat Enterprise Linux EUS 5.4.z (server)

サイバートラスト株式会社

Asianux Server 3 (x86)

Asianux Server 3 (x86-64)

Asianux Server 4.0

Asianux Server 4.0 (x86-64)

Linux

Linux Kernel 2.4.37.6 未満

Linux Kernel 2.6.31-rc9 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2009-3228	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3228
National Vulnerability Database (NVD)
2	CVE-2009-3228	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3228

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-200	https://jvndb.jvn.jp/ja/cwe/CWE-200.html

ベンダー情報

No	Name	URL
Asianux Technical Support Network
1	kernel-2.6.18-128.13AXS3	https://tsn.miraclelinux.com/tsn_local/index.php?m=errata&a=detail&eid=804
Linux Kernel
2	ChangeLog-2.4.37.6	http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.37.6
3	ChangeLog-2.6.31-rc9	http://www.kernel.org/pub/linux/kernel/v2.6/testing/v2.6.31/ChangeLog-2.6.31-rc9
MIRACLE LINUX アップデート情報
4	1814	http://www.miraclelinux.com/support/index.php?q=node/99&errata_id=1814
5	1992	http://www.miraclelinux.com/support/index.php?q=node/99&errata_id=1992
Red Hat Security Advisory
6	RHSA-2009:1522	https://rhn.redhat.com/errata/RHSA-2009-1522.html
7	RHSA-2009:1540	https://rhn.redhat.com/errata/RHSA-2009-1540.html
8	RHSA-2009:1548	https://rhn.redhat.com/errata/RHSA-2009-1548.html
レッドハットセキュリティーアップデート
9	RHSA-2009:1522	https://www.jp.redhat.com/support/errata/RHSA/RHSA-2009-1522J.html
10	RHSA-2009:1548	https://www.jp.redhat.com/support/errata/RHSA/RHSA-2009-1548J.html

その他

No	Name	URL
SecurityTracker
1	1023073	http://www.securitytracker.com/id?1023073

Change Log

No	Changed Details	Date of change
0	[2009年12月02日] 掲載 [2010年01月26日] 影響を受けるシステム：ミラクル・リナックス (kernel-2.6.18-128.13AXS3) の情報を追加ベンダ情報：ミラクル・リナックス (kernel-2.6.18-128.13AXS3) を追加ベンダ情報：ミラクル・リナックス (1992) を追加	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2009-3228

Summary	The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.31-rc9 does not initialize certain (1) tcm__pad1 and (2) tcm__pad2 structure members, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors.
Publication Date	Oct. 20, 2009, 5 a.m.
Registration Date	Jan. 29, 2021, 1:23 p.m.
Last Update	Nov. 7, 2023, 11:04 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:linux:linux_kernel:2.6.31:rc4::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc1::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc6::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc5::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc7::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc8::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc3::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc2::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:-::::::
cpe:2.3:o:linux:linux_kernel::::::::	2.4.0			2.4.37.6
cpe:2.3:o:linux:linux_kernel::::::::	2.6.0			2.6.31

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:canonical:ubuntu_linux:9.04:::::::*
cpe:2.3:o:canonical:ubuntu_linux:8.10:::::::*
cpe:2.3:o:canonical:ubuntu_linux:9.10:::::::*
cpe:2.3:o:canonical:ubuntu_linux:8.04::::-:::
cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*

Configuration3	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux_server:5.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:5.4:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://www.openwall.com/lists/oss-security/2009/09/17/1	MLIST	Mailing List Patch Third Party Advisory
2	http://www.openwall.com/lists/oss-security/2009/09/06/2	MLIST	Mailing List Patch Third Party Advisory
3	http://www.openwall.com/lists/oss-security/2009/09/05/2	MLIST	Mailing List Patch Third Party Advisory
4	http://www.openwall.com/lists/oss-security/2009/09/17/9	MLIST	Mailing List Patch Third Party Advisory
5	http://patchwork.ozlabs.org/patch/32830/	CONFIRM	Patch Third Party Advisory
6	http://www.openwall.com/lists/oss-security/2009/09/07/2	MLIST	Mailing List Patch Third Party Advisory
7	http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.37.6	CONFIRM	Broken Link
8	http://www.kernel.org/pub/linux/kernel/v2.6/testing/v2.6.31/ChangeLog-2.6.31-rc9	CONFIRM	Broken Link
9	http://www.openwall.com/lists/oss-security/2009/09/03/1	MLIST	Mailing List Patch Third Party Advisory
10	https://bugzilla.redhat.com/show_bug.cgi?id=520990	CONFIRM	Issue Tracking Patch Third Party Advisory
11	http://www.securitytracker.com/id?1023073	SECTRACK	Third Party Advisory VDB Entry
12	https://rhn.redhat.com/errata/RHSA-2009-1548.html	REDHAT	Third Party Advisory
13	https://rhn.redhat.com/errata/RHSA-2009-1540.html	REDHAT	Third Party Advisory
14	http://www.ubuntu.com/usn/usn-864-1	UBUNTU	Third Party Advisory
15	http://secunia.com/advisories/38834	SECUNIA	Third Party Advisory
16	http://www.vupen.com/english/advisories/2010/0528	VUPEN	Third Party Advisory
17	http://lists.vmware.com/pipermail/security-announce/2010/000082.html	MLIST	Third Party Advisory
18	http://secunia.com/advisories/38794	SECUNIA	Third Party Advisory
19	http://www.mandriva.com/security/advisories?name=MDVSA-2010:198	MANDRIVA	Third Party Advisory
20	http://www.redhat.com/support/errata/RHSA-2009-1522.html	REDHAT	Third Party Advisory
21	http://secunia.com/advisories/37084	SECUNIA	Third Party Advisory
22	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9409	OVAL	Third Party Advisory
23	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6757	OVAL	Third Party Advisory
24	http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git%3Ba=commit%3Bh=096ed17f20affc2db0e307658c69b67433992a7a
25	http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=16ebb5e0b36ceadc8186f71d68b0c4fa4b6e781b

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-909	リソースの初期化の不備	https://cwe.mitre.org/data/definitions/909.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:linux:linux_kernel:2.6.31:rc4::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc1::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc6::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc5::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc7::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc8::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc3::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:rc2::::::
cpe:2.3:o:linux:linux_kernel:2.6.31:-::::::
cpe:2.3:o:linux:linux_kernel::::::::	2.4.0			2.4.37.6
cpe:2.3:o:linux:linux_kernel::::::::	2.6.0			2.6.31