CVE-2013-2141
EPSS 0.04%linux-2.6 - several
Published: 6/7/2013Modified: 4/28/2026
Description
The do_tkill function in kernel/signal.c in the Linux kernel before 3.8.9 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory via a crafted application that makes a (1) tkill or (2) tgkill system call.
Affected packages (2)
- Debian/linuxfrom 0, < 3.9.4-1
- Debian/linux-2.6from 0, < 2.6.32-48squeeze4