Published: 30/11/2010 Updated: 07/11/2023

CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4

VMScore: 170

Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N

The viafb_ioctl_get_viafb_info function in drivers/video/via/ioctl.c in the Linux kernel prior to 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a VIAFB_GET_INFO ioctl call.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 2.6.36
linux linux kernel
suse linux enterprise desktop 11
suse linux enterprise server 11
opensuse opensuse 11.2
opensuse opensuse 11.3
suse linux enterprise real time extension 11

Multiple kernel flaws ...

Multiple kernel flaws have been fixed ...

An attacker could send crafted input to the kernel and cause it to crash ...

Multiple kernel flaws have been fixed ...

Multiple kernel flaws ...

The Linux kernel could be made to run unauthorized programs with administrator privileges ...

Ubuntu Security Notice 1202-1 - Dan Rosenberg discovered that several network ioctls did not clear kernel memory correctly A local user could exploit this to read kernel stack memory, leading to a loss of privacy Brad Spengler discovered that stack memory for new a process was not correctly calculated A local attacker could exploit this to crash ...

CWE-909 http://www.openwall.com/lists/oss-security/2010/10/07/1 http://www.openwall.com/lists/oss-security/2010/10/25/3 https://bugzilla.redhat.com/show_bug.cgi?id=648671 http://www.kernel.org/pub/linux/kernel/v2.6/testing/v2.6.36/ChangeLog-2.6.36-rc5 http://lkml.indiana.edu/hypermail//linux/kernel/1009.1/03392.html http://www.openwall.com/lists/oss-security/2010/10/06/6 http://www.openwall.com/lists/oss-security/2010/09/25/2 http://www.securityfocus.com/bid/43817 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.html http://www.redhat.com/support/errata/RHSA-2010-0958.html http://www.vupen.com/english/advisories/2011/0012 http://secunia.com/advisories/42778 http://secunia.com/advisories/42801 http://secunia.com/advisories/42932 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.html http://www.vupen.com/english/advisories/2011/0124 http://secunia.com/advisories/42890 http://www.redhat.com/support/errata/RHSA-2011-0007.html http://www.vupen.com/english/advisories/2011/0298 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b4aaa78f4c2f9cde2f335b14f4ca30b01f9651ca https://nvd.nist.gov https://usn.ubuntu.com/1083-1/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-4082

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect