Lucene search

[email protected]CVE-2010-3437

HistoryOct 04, 2010 - 9:00 p.m.

CVE-2010-3437

2010-10-0421:00:04

CWE-476

[email protected]

web.nvd.nist.gov

cve-2010-3437

linux kernel

pkt_find_dev_from_minor

sensitive information leak

denial of service

invalid pointer dereference

system crash

6.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:N/A:C

5.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

0.4%

JSON

Integer signedness error in the pkt_find_dev_from_minor function in drivers/block/pktcdvd.c in the Linux kernel before 2.6.36-rc6 allows local users to obtain sensitive information from kernel memory or cause a denial of service (invalid pointer dereference and system crash) via a crafted index value in a PKT_CTRL_CMD_STATUS ioctl call.

Affected configurations

NVD

Node

linuxlinux_kernelRange<2.6.36

linuxlinux_kernelMatch2.6.36-

linuxlinux_kernelMatch2.6.36rc1

linuxlinux_kernelMatch2.6.36rc2

linuxlinux_kernelMatch2.6.36rc3

linuxlinux_kernelMatch2.6.36rc4

linuxlinux_kernelMatch2.6.36rc5

Node

opensuseopensuseMatch11.2

opensuseopensuseMatch11.3

suselinux_enterprise_desktopMatch10sp3

suselinux_enterprise_desktopMatch11sp1

suselinux_enterprise_real_time_extensionMatch11sp1

suselinux_enterprise_serverMatch9

suselinux_enterprise_serverMatch10sp3

suselinux_enterprise_serverMatch11sp1

suselinux_enterprise_software_development_kitMatch10sp3

Node

debiandebian_linuxMatch5.0

Node

canonicalubuntu_linuxMatch6.06

canonicalubuntu_linuxMatch8.04-

canonicalubuntu_linuxMatch9.04

canonicalubuntu_linuxMatch9.10

canonicalubuntu_linuxMatch10.04-

canonicalubuntu_linuxMatch10.10

CPENameOperatorVersion
linux:linux_kernellinux linux kernellt2.6.36

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	lt	2.6.36

References

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=252a52aa4fa22a668f019e55b3aac3ff71ec1c29

jon.oberheide.org/files/cve-2010-3437.c

lists.opensuse.org/opensuse-security-announce/2010-12/msg00004.html

lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html

lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.html

lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.html

lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html

secunia.com/advisories/42778

secunia.com/advisories/42801

secunia.com/advisories/42932

www.debian.org/security/2010/dsa-2126

www.exploit-db.com/exploits/15150/

www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.36-rc6

www.mandriva.com/security/advisories?name=MDVSA-2011:029

www.mandriva.com/security/advisories?name=MDVSA-2011:051

www.openwall.com/lists/oss-security/2010/09/28/2

www.openwall.com/lists/oss-security/2010/09/28/6

www.redhat.com/support/errata/RHSA-2010-0842.html

www.securityfocus.com/bid/43551

www.ubuntu.com/usn/USN-1000-1

www.vupen.com/english/advisories/2011/0012

www.vupen.com/english/advisories/2011/0124

www.vupen.com/english/advisories/2011/0298

bugzilla.redhat.com/show_bug.cgi?id=638085

Social References

6.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:N/A:C

5.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2010-3437

cvelist1 seebug3 prion1 exploitpack1 veracode1 nvd1 ubuntucve1 exploitdb1 nessus15 oraclelinux2 openvas19 redhat1 kitploit1 suse5 ubuntu6 securityvulns2 debian1 osv1