Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:20118
HistorySep 14, 2010 - 12:00 a.m.

Linux kernel 2.6.x ecryptfs_uid_hash()函数本地溢出漏洞

2010-09-1400:00:00
Root
www.seebug.org
17

0.0004 Low

EPSS

Percentile

5.1%

JSON

BUGTRAQ ID: 42237
CVE ID: CVE-2010-2492

Linux Kernel是开放源码操作系统Linux所使用的内核。

Linux Kernel eCryptfs子系统中fs/ecryptfs/messaging.c文件的ecryptfs_uid_hash宏错误的假设hash_long()函数的第二个参数是哈希桶的数目而不是哈希位的数目,这允许本地用户导致缓冲区溢出。

Linux kernel 2.6.x
厂商补丁:

Linux

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=a6f80fb7b5986fda663d94079d3bba0937a6b6ff

Related

nvd 1
veracode 1
cvelist 1
ubuntucve 1
cve 1
prion 1
securityvulns 3
nessus 13
openvas 22
osv 1
debian 1
redhat 2
centos 1
oraclelinux 3
ubuntu 1
suse 1
vmware 2
nvd
nvd
CVE-2010-2492
2010-09-08 20:00:02
veracode
veracode
Privilege Escalation
2020-04-10 00:51:53
cvelist
cvelist
CVE-2010-2492
2010-09-08 19:00:00
ubuntucve
ubuntucve
CVE-2010-2492
2010-07-20 00:00:00
cve
cve
CVE-2010-2492
2010-09-08 20:00:02
prion
prion
Buffer overflow
2010-09-08 20:00:00
securityvulns
securityvulns
[ MDVSA-2010:172 ] kernel
2010-09-11 00:00:00
[SECURITY] [DSA 2110-1] New Linux 2.6.26 packages fix several issues
2010-09-20 00:00:00
Linux kernel multiple security vulnerabilities
2010-09-20 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : kernel (MDVSA-2010:172)
2010-09-12 00:00:00
Debian DSA-2110-1 : linux-2.6 - privilege escalation/denial of service/information leak
2010-09-20 00:00:00
RHEL 5 : kernel (RHSA-2010:0723)
2010-10-06 00:00:00
openvas
openvas
Mandriva Update for kernel MDVSA-2010:172 (kernel)
2010-09-27 00:00:00
Mandriva Update for kernel MDVSA-2010:172 (kernel)
2010-09-27 00:00:00
Debian Security Advisory DSA 2110-1 (linux-2.6)
2010-10-10 00:00:00
osv
osv
linux-2.6 - several issues
2010-09-17 00:00:00
debian
debian
[SECURITY] [DSA 2110-1] New Linux 2.6.26 packages fix several issues
2010-09-17 15:45:07
redhat
redhat
(RHSA-2010:0723) Important: kernel security and bug fix update
2010-09-29 00:00:00
(RHSA-2011:0007) Important: kernel security and bug fix update
2011-01-11 00:00:00
centos
centos
kernel security update
2010-09-30 15:36:09
oraclelinux
oraclelinux
kernel security and bug fix update
2010-09-29 00:00:00
kernel security and bug fix update
2011-02-12 00:00:00
Oracle Linux 5.6 kernel security and bug fix update
2011-01-20 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2010-08-04 00:00:00
suse
suse
local privilege escalation in kernel
2010-09-23 16:37:26
vmware
vmware
VMware ESX third party updates for Service Console packages glibc and dhcp
2011-10-12 00:00:00
VMware ESXi and ESX updates to third party libraries and ESX Service Console
2011-10-12 00:00:00

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for SSV:20118
nvd1veracode1cvelist1ubuntucve1cve1prion1securityvulns3nessus13openvas22osv1debian1redhat2centos1oraclelinux3ubuntu1suse1vmware2