CVE-2006-1342

Name of the Vulnerable Software and Affected Versions Linux kernel version 2.4

Description The issue is related to the Linux kernel's handling of IPv4 socket names. Specifically, the net/ipv4/af inet.c file does not properly clear the sockaddr in.sin zero field before returning socket names from certain functions. This can allow local users to access potentially sensitive memory contents. The affected functions include getsockname, getpeername, and accept.

Recommendations For Linux kernel version 2.4, consider applying a patch that properly clears the sockaddr in.sin zero field in the getsockname, getpeername, and accept functions to prevent potential memory leaks.