Lucene search

[email protected]NVD:CVE-2010-3442

HistoryOct 04, 2010 - 9:00 p.m.

CVE-2010-3442

2010-10-0421:00:04

CWE-190

[email protected]

web.nvd.nist.gov

CVSS2

4.7

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.5

Confidence

High

EPSS

Percentile

10.1%

JSON

Multiple integer overflows in the snd_ctl_new function in sound/core/control.c in the Linux kernel before 2.6.36-rc5-next-20100929 allow local users to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted (1) SNDRV_CTL_IOCTL_ELEM_ADD or (2) SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl call.

Affected configurations

Nvd

Node

linuxlinux_kernelRange<2.6.36

linuxlinux_kernelMatch2.6.36-

linuxlinux_kernelMatch2.6.36rc1

linuxlinux_kernelMatch2.6.36rc2

linuxlinux_kernelMatch2.6.36rc3

linuxlinux_kernelMatch2.6.36rc4

Node

fedoraprojectfedoraMatch13

Node

opensuseopensuseMatch11.2

opensuseopensuseMatch11.3

suselinux_enterprise_desktopMatch10sp3

suselinux_enterprise_real_time_extensionMatch11sp1

suselinux_enterprise_serverMatch9

suselinux_enterprise_serverMatch10sp3

suselinux_enterprise_software_development_kitMatch10sp3

Node

debiandebian_linuxMatch5.0

Node

canonicalubuntu_linuxMatch6.06

canonicalubuntu_linuxMatch8.04-

canonicalubuntu_linuxMatch9.04

canonicalubuntu_linuxMatch9.10

canonicalubuntu_linuxMatch10.04-

canonicalubuntu_linuxMatch10.10

VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel2.6.36cpe:2.3:o:linux:linux_kernel:2.6.36:-:*:*:*:*:*:*
linuxlinux_kernel2.6.36cpe:2.3:o:linux:linux_kernel:2.6.36:rc1:*:*:*:*:*:*
linuxlinux_kernel2.6.36cpe:2.3:o:linux:linux_kernel:2.6.36:rc2:*:*:*:*:*:*
linuxlinux_kernel2.6.36cpe:2.3:o:linux:linux_kernel:2.6.36:rc3:*:*:*:*:*:*
linuxlinux_kernel2.6.36cpe:2.3:o:linux:linux_kernel:2.6.36:rc4:*:*:*:*:*:*
fedoraprojectfedora13cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:*
opensuseopensuse11.2cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
opensuseopensuse11.3cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*
suselinux_enterprise_desktop10cpe:2.3:o:suse:linux_enterprise_desktop:10:sp3:*:*:*:*:*:*

Vendor	Product	Version	CPE
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	2.6.36	cpe:2.3:o:linux:linux_kernel:2.6.36:-::::::
linux	linux_kernel	2.6.36	cpe:2.3:o:linux:linux_kernel:2.6.36:rc1::::::
linux	linux_kernel	2.6.36	cpe:2.3:o:linux:linux_kernel:2.6.36:rc2::::::
linux	linux_kernel	2.6.36	cpe:2.3:o:linux:linux_kernel:2.6.36:rc3::::::
linux	linux_kernel	2.6.36	cpe:2.3:o:linux:linux_kernel:2.6.36:rc4::::::
fedoraproject	fedora	13	cpe:2.3:o:fedoraproject:fedora:13:::::::*
opensuse	opensuse	11.2	cpe:2.3:o:opensuse:opensuse:11.2:::::::*
opensuse	opensuse	11.3	cpe:2.3:o:opensuse:opensuse:11.3:::::::*
suse	linux_enterprise_desktop	10	cpe:2.3:o:suse:linux_enterprise_desktop:10:sp3::::::