Linux Kernel File 64-Bit Offset Pointer Handling Kernel Memory Disclosure Vulnerability

Linux Kernel File 64-Bit Offset Pointer Handling Kernel Memory Disclosure Vulnerability

A vulnerability in the Linux kernel in the 64-bit file offset handling code may allow malicious users to read kernel memory. This issue is due to a design error that causes the affected code to fail to properly validate file pointers.

An attacker may leverage this issue to read arbitrary Linux kernel memory. This could allow an attacker to read sensitive data such as cached passwords. This issue will certainly aid in further attacks against the affected computer.

It has been reported that the Linux 2.6.X kernel, although still vulnerable, might not be exploitable. This BID will be updated when more information becomes available.