Vigil@nce - Linux kernel: information disclosure via nf_nat_irc
February 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker, who communicates via IRC, can obtain fragments of the
Linux kernel, in order to obtain sensitive information.
Impacted products: Linux, netfilter
Severity: 2/4
Creation date: 28/01/2014
DESCRIPTION OF THE VULNERABILITY
The NetFilter firewall supports the tracking of IRC connections
(NF_NAT_IRC).
However the help() function of the net/netfilter/nf_nat_irc.c file
does not initialize a memory area, before inserting it in the IRC
packet, which is then sent on the network.
An attacker, who communicates via IRC, can therefore obtain
fragments of the Linux kernel, in order to obtain sensitive
information.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Linux-kernel-information-disclosure-via-nf-nat-irc-14146