Max CVSS | 7.9 | Min CVSS | 1.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2010-4249 | 4.9 |
The wait_for_unix_gc function in net/unix/garbage.c in the Linux kernel before 2.6.37-rc3-next-20101125 does not properly select times for garbage collection of inflight sockets, which allows local users to cause a denial of service (system hang) via
|
13-02-2023 - 04:28 | 29-11-2010 - 16:00 | |
CVE-2010-4263 | 7.9 |
The igb_receive_skb function in drivers/net/igb/igb_main.c in the Intel Gigabit Ethernet (aka igb) subsystem in the Linux kernel before 2.6.34, when Single Root I/O Virtualization (SR-IOV) and promiscuous mode are enabled but no VLANs are registered,
|
13-02-2023 - 04:28 | 18-01-2011 - 18:03 | |
CVE-2010-4248 | 4.9 |
Race condition in the __exit_signal function in kernel/exit.c in the Linux kernel before 2.6.37-rc2 allows local users to cause a denial of service via vectors related to multithreaded exec, the use of a thread group leader in kernel/posix-cpu-timers
|
13-02-2023 - 04:28 | 30-11-2010 - 21:38 | |
CVE-2010-4158 | 2.1 |
The sk_run_filter function in net/core/filter.c in the Linux kernel before 2.6.36.2 does not check whether a certain memory location has been initialized before executing a (1) BPF_S_LD_MEM or (2) BPF_S_LDX_MEM instruction, which allows local users t
|
13-02-2023 - 04:27 | 30-12-2010 - 19:00 | |
CVE-2010-3865 | 7.2 |
Integer overflow in the rds_rdma_pages function in net/rds/rdma.c in the Linux kernel allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted iovec struct in a Reliable Datagram Sockets (RDS) request,
|
13-02-2023 - 04:27 | 11-01-2011 - 03:00 | |
CVE-2010-4162 | 4.7 |
Multiple integer overflows in fs/bio.c in the Linux kernel before 2.6.36.2 allow local users to cause a denial of service (system crash) via a crafted device ioctl to a SCSI device.
|
13-02-2023 - 04:27 | 03-01-2011 - 20:00 | |
CVE-2010-4163 | 4.7 |
The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 2.6.36.2 allows local users to cause a denial of service (panic) via a zero-length I/O request in a device ioctl to a SCSI device.
|
13-02-2023 - 04:27 | 03-01-2011 - 20:00 | |
CVE-2010-3876 | 1.9 |
net/packet/af_packet.c in the Linux kernel before 2.6.37-rc2 does not properly initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory by leveraging the CAP_NET_RAW capabilit
|
13-02-2023 - 04:27 | 03-01-2011 - 20:00 | |
CVE-2010-4160 | 6.9 |
Multiple integer overflows in the (1) pppol2tp_sendmsg function in net/l2tp/l2tp_ppp.c, and the (2) l2tp_ip_sendmsg function in net/l2tp/l2tp_ip.c, in the PPPoL2TP and IPoL2TP implementations in the Linux kernel before 2.6.36.2 allow local users to c
|
13-02-2023 - 04:27 | 07-01-2011 - 12:00 | |
CVE-2010-3880 | 4.9 |
net/ipv4/inet_diag.c in the Linux kernel before 2.6.37-rc2 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message t
|
13-02-2023 - 04:27 | 10-12-2010 - 19:00 | |
CVE-2010-3874 | 4.0 |
Heap-based buffer overflow in the bcm_connect function in net/can/bcm.c (aka the Broadcast Manager) in the Controller Area Network (CAN) implementation in the Linux kernel before 2.6.36.2 on 64-bit platforms might allow local users to cause a denial
|
13-02-2023 - 04:27 | 29-12-2010 - 18:00 | |
CVE-2010-3861 | 2.1 |
The ethtool_get_rxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize a certain block of heap memory, which allows local users to obtain potentially sensitive information via an ETHTOOL_GRXCLSRLALL ethtool command
|
13-02-2023 - 04:27 | 10-12-2010 - 19:00 | |
CVE-2010-3080 | 7.2 |
Double free vulnerability in the snd_seq_oss_open function in sound/core/seq/oss/seq_oss_init.c in the Linux kernel before 2.6.36-rc4 might allow local users to cause a denial of service or possibly have unspecified other impact via an unsuccessful a
|
13-02-2023 - 04:22 | 21-09-2010 - 18:00 | |
CVE-2010-3078 | 2.1 |
The xfs_ioc_fsgetxattr function in fs/xfs/linux-2.6/xfs_ioctl.c in the Linux kernel before 2.6.36-rc4 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an
|
13-02-2023 - 04:22 | 21-09-2010 - 18:00 | |
CVE-2010-3067 | 4.9 |
Integer overflow in the do_io_submit function in fs/aio.c in the Linux kernel before 2.6.36-rc4-next-20100915 allows local users to cause a denial of service or possibly have unspecified other impact via crafted use of the io_submit system call.
|
13-02-2023 - 04:21 | 21-09-2010 - 18:00 | |
CVE-2010-2492 | 7.2 |
Buffer overflow in the ecryptfs_uid_hash macro in fs/ecryptfs/messaging.c in the eCryptfs subsystem in the Linux kernel before 2.6.35 might allow local users to gain privileges or cause a denial of service (system crash) via unspecified vectors.
|
13-02-2023 - 03:15 | 08-09-2010 - 20:00 | |
CVE-2010-4083 | 1.9 |
The copy_semid_to_user function in ipc/sem.c in the Linux kernel before 2.6.36 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via a (1) IPC_INFO, (2) SEM_INFO, (3
|
14-08-2020 - 15:23 | 30-11-2010 - 22:14 | |
CVE-2010-4072 | 1.9 |
The copy_shmid_to_user function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the shmct
|
14-08-2020 - 15:19 | 29-11-2010 - 16:00 | |
CVE-2010-3477 | 2.1 |
The tcf_act_police_dump function in net/sched/act_police.c in the actions implementation in the network queueing functionality in the Linux kernel before 2.6.36-rc4 does not properly initialize certain structure members, which allows local users to o
|
14-08-2020 - 14:03 | 21-09-2010 - 20:00 | |
CVE-2010-4082 | 1.9 |
The viafb_ioctl_get_viafb_info function in drivers/video/via/ioctl.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack
|
13-08-2020 - 13:18 | 30-11-2010 - 22:14 | |
CVE-2010-4081 | 1.9 |
The snd_hdspm_hwdep_ioctl function in sound/pci/rme9652/hdspm.c in the Linux kernel before 2.6.36-rc6 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via an SNDRV_
|
13-08-2020 - 13:15 | 30-11-2010 - 22:14 | |
CVE-2010-4668 | 4.7 |
The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 2.6.37-rc7 allows local users to cause a denial of service (panic) via a zero-length I/O request in a device ioctl to a SCSI device, related to an unaligned map. NOTE: th
|
12-08-2020 - 19:37 | 03-01-2011 - 20:00 | |
CVE-2010-4080 | 2.1 |
The snd_hdsp_hwdep_ioctl function in sound/pci/rme9652/hdsp.c in the Linux kernel before 2.6.36-rc6 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via an SNDRV_HD
|
12-08-2020 - 19:34 | 30-11-2010 - 22:14 | |
CVE-2010-4079 | 1.9 |
The ivtvfb_ioctl function in drivers/media/video/ivtv/ivtvfb.c in the Linux kernel before 2.6.36-rc8 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memor
|
12-08-2020 - 18:06 | 29-11-2010 - 16:00 | |
CVE-2010-4075 | 1.9 |
The uart_get_count function in drivers/serial/serial_core.c in the Linux kernel before 2.6.37-rc1 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory v
|
10-08-2020 - 19:52 | 29-11-2010 - 16:00 | |
CVE-2010-4073 | 1.9 |
The ipc subsystem in the Linux kernel before 2.6.37-rc1 does not initialize certain structures, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the (1) compat_sys_semctl, (2) compat
|
10-08-2020 - 19:44 | 29-11-2010 - 16:00 | |
CVE-2010-4074 | 1.9 |
The USB subsystem in the Linux kernel before 2.6.36-rc5 does not properly initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to TIOCGICOUNT ioctl cal
|
10-08-2020 - 16:18 | 29-11-2010 - 16:00 | |
CVE-2010-4077 | 1.9 |
The ntty_ioctl_tiocgicount function in drivers/char/nozomi.c in the Linux kernel 2.6.36.1 and earlier does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memo
|
07-08-2020 - 15:42 | 29-11-2010 - 16:00 | |
CVE-2010-4242 | 4.0 |
The hci_uart_tty_open function in the HCI UART driver (drivers/bluetooth/hci_ldisc.c) in the Linux kernel 2.6.36, and possibly other versions, does not verify whether the tty has a write operation, which allows local users to cause a denial of servic
|
10-10-2018 - 20:07 | 11-01-2011 - 03:00 | |
CVE-2010-4525 | 1.9 |
Linux kernel 2.6.33 and 2.6.34.y does not initialize the kvm_vcpu_events->interrupt.pad structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via unspecified vectors.
|
17-08-2017 - 01:33 | 11-01-2011 - 03:00 |