Published: 17/02/2010 Updated: 13/02/2023

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

VMScore: 465

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

The do_pages_move function in mm/migrate.c in the Linux kernel prior to 2.6.33-rc7 does not validate node values, which allows local users to read arbitrary kernel memory locations, cause a denial of service (OOPS), and possibly have unspecified other impact by specifying a node that is not part of the kernel's node set.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 2.6.11
linux linux kernel 2.6.23.4
linux linux kernel 2.6.16.16
linux linux kernel 2.6.18.7
linux linux kernel 2.6.17.12
linux linux kernel 2.6.16.9
linux linux kernel 2.6.17.9
linux linux kernel 2.6.11.2
linux linux kernel 2.6.5
linux linux kernel 2.6.15.3
linux linux kernel 2.6.11.10
linux linux kernel 2.6.1
linux linux kernel 2.6.16.6
linux linux kernel 2.6.16.8
linux linux kernel 2.6.22.4
linux linux kernel 2.6.14.7
linux linux kernel 2.6.13
linux linux kernel 2.6.17.2
linux linux kernel 2.6.13.3
linux linux kernel 2.6.11.8
linux linux kernel 2.6.23.7
linux linux kernel 2.6.17.8
linux linux kernel 2.6.14.4
linux linux kernel 2.6.14
linux linux kernel 2.6.17.4
linux linux kernel 2.6.16.18
linux linux kernel 2.6.17.14
linux linux kernel 2.6.10
linux linux kernel 2.6.14.3
linux linux kernel 2.6.24
linux linux kernel 2.6.18.3
linux linux kernel 2.6.11.6
linux linux kernel 2.6.11.11
linux linux kernel 2.6.16.13
linux linux kernel 2.6.3
linux linux kernel 2.6.32
linux linux kernel 2.6.16.4
linux linux kernel 2.6.17.3
linux linux kernel 2.6.32.3
linux linux kernel 2.6.22
linux linux kernel 2.6.4
linux linux kernel 2.6.16.15
linux linux kernel 2.6.15.6
linux linux kernel 2.6.15.1
linux linux kernel 2.6.11.5
linux linux kernel 2.6.18.4
linux linux kernel 2.6.33
linux linux kernel 2.6.16.1
linux linux kernel 2.6.18.1
linux linux kernel 2.6.23.1
linux linux kernel 2.6.2
linux linux kernel 2.6.14.5
linux linux kernel 2.6.13.2
linux linux kernel 2.6.17.5
linux linux kernel 2.6.18.5
linux linux kernel 2.6.13.5
linux linux kernel 2.6.17
linux linux kernel 2.6.16.11
linux linux kernel 2.6.16.14
linux linux kernel
linux linux kernel 2.6.16.25
linux linux kernel 2.6.16.21
linux linux kernel 2.6.8
linux linux kernel 2.6.16.28
linux linux kernel 2.6.17.10
linux linux kernel 2.6.14.1
linux linux kernel 2.6.16.23
linux linux kernel 2.6.12.5
linux linux kernel 2.6.15.7
linux linux kernel 2.6.22.7
linux linux kernel 2.6.16.3
linux linux kernel 2.6.14.6
linux linux kernel 2.6.12.1
linux linux kernel 2.6.11.9
linux linux kernel 2.6.17.1
linux linux kernel 2.6.0
linux linux kernel 2.6.13.4
linux linux kernel 2.6.23
linux linux kernel 2.6.22.6
linux linux kernel 2.6.23.3
linux linux kernel 2.6.18.8
linux linux kernel 2.6.22.3
linux linux kernel 2.6.12.2
linux linux kernel 2.6.16.31
linux linux kernel 2.6.16.26
linux linux kernel 2.6.18.2
linux linux kernel 2.6.16.29
linux linux kernel 2.6.16
linux linux kernel 2.6.15.2
linux linux kernel 2.6.16.22
linux linux kernel 2.6.17.11
linux linux kernel 2.6.16.10
linux linux kernel 2.6.12.4
linux linux kernel 2.6.11.3
linux linux kernel 2.6.16.24
linux linux kernel 2.6.12.3
linux linux kernel 2.6.23.2
linux linux kernel 2.6.7
linux linux kernel 2.6.32.4
linux linux kernel 2.6.16.30
linux linux kernel 2.6.15.4
linux linux kernel 2.6.16.17
linux linux kernel 2.6.16.12
linux linux kernel 2.6.16.27
linux linux kernel 2.6.12.6
linux linux kernel 2.6.17.7
linux linux kernel 2.6.11.7
linux linux kernel 2.6.16.2
linux linux kernel 2.6.18.6
linux linux kernel 2.6.15
linux linux kernel 2.6.23.5
linux linux kernel 2.6.32.2
linux linux kernel 2.6.17.6
linux linux kernel 2.6.23.6
linux linux kernel 2.6.16.7
linux linux kernel 2.6.32.1
linux linux kernel 2.6.17.13
linux linux kernel 2.6.22.2
linux linux kernel 2.6.8.1
linux linux kernel 2.6.22.5
linux linux kernel 2.6.16.5
linux linux kernel 2.6.11.4
linux linux kernel 2.6.16.19
linux linux kernel 2.6.11.12
linux linux kernel 2.6.16.20
linux linux kernel 2.6.15.5
linux linux kernel 2.6.11.1
linux linux kernel 2.6.9
linux linux kernel 2.6.13.1
linux linux kernel 2.6.6
linux linux kernel 2.6.12

Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic Updated kernel packages that fix multiple security issues and several bugsare now available for Red Hat Enterprise Linux 5The Red Hat Security Response Team has rated this update as havingimportant secur ...

Mathias Krause discovered that the Linux kernel did not correctly handle missing ELF interpreters A local attacker could exploit this to cause the system to crash, leading to a denial of service (CVE-2010-0307) ...

NOTE: This kernel update marks the final planned kernel security update for the 2618 kernel in the Debian release 'etch' Although security support for 'etch' officially ended on Feburary 15th, 2010, this update was already in preparation before that date A final update that includes fixes for these issues in the 2624 kernel is also in prepara ...

NOTE: This kernel update marks the final planned kernel security update for the 2624 kernel in the Debian release 'etch' Although security support for 'etch' officially ended on Feburary 15th, 2010, this update was already in preparation before that date Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial ...

/* sieve (because the Linux kernel leaks like one, get it?) Bug NOT discovered by Marcus Meissner of SuSE security This bug was discovered by Ramon de Carvalho Valle in September of 2009 The bug was found via fuzzing, and on Sept 24th I was sent a POC DoS for the bug (but had forgotten about it until now) Ramon's report was sent to N ...

NVD-CWE-Other http://www.openwall.com/lists/oss-security/2010/02/07/1 http://www.openwall.com/lists/oss-security/2010/02/08/2 https://bugzilla.redhat.com/show_bug.cgi?id=562582 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.33-rc7 http://www.securityfocus.com/bid/38144 http://www.openwall.com/lists/oss-security/2010/02/07/2 http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035159.html http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035070.html http://www.debian.org/security/2010/dsa-1996 http://secunia.com/advisories/38557 http://secunia.com/advisories/38492 http://www.ubuntu.com/usn/USN-914-1 http://www.vupen.com/english/advisories/2010/0638 http://www.debian.org/security/2010/dsa-2005 http://www.mandriva.com/security/advisories?name=MDVSA-2010:066 http://www.redhat.com/support/errata/RHSA-2010-0161.html http://secunia.com/advisories/38922 http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00006.html http://www.redhat.com/support/errata/RHSA-2010-0147.html http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00000.html http://secunia.com/advisories/38779 http://secunia.com/advisories/39033 http://www.mandriva.com/security/advisories?name=MDVSA-2010:198 http://www.vmware.com/security/advisories/VMSA-2011-0003.html http://secunia.com/advisories/43315 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9399 http://www.securityfocus.com/archive/1/516397/100/0/threaded http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6f5a55f1a6c5abee15a0e878e5c74d9f1569b8b0 https://access.redhat.com/errata/RHSA-2010:0147 https://usn.ubuntu.com/914-1/https://nvd.nist.gov https://www.exploit-db.com/exploits/40810/

Get Started

CVE-2010-0415

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect