VYPR
Unrated severityNVD Advisory· Published Mar 21, 2006· Updated Jun 16, 2026

CVE-2006-1343

CVE-2006-1343

Description

net/ipv4/netfilter/ip_conntrack_core.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nf_conntrack_l3proto_ipv4.c in 2.6, does not clear sockaddr_in.sin_zero before returning IPv4 socket names from the getsockopt function with SO_ORIGINAL_DST, which allows local users to obtain portions of potentially sensitive memory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Linux/Kernel3 versions
    cpe:2.3:o:linux:linux_kernel:2.4.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:linux:linux_kernel:2.4.0:*:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.0:*:*:*:*:*:*:*
    • (no CPE)range: 2.4, 2.6

Patches

Vulnerability mechanics

References

37

News mentions

0

No linked articles in our index yet.