Max CVSS | 7.8 | Min CVSS | 1.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2010-4527 | 6.9 |
The load_mixer_volumes function in sound/oss/soundcard.c in the OSS sound subsystem in the Linux kernel before 2.6.37 incorrectly expects that a certain name field ends with a '\0' character, which allows local users to conduct buffer overflow attack
|
13-02-2023 - 04:28 | 13-01-2011 - 19:00 | |
CVE-2010-4342 | 7.1 |
The aun_incoming function in net/econet/af_econet.c in the Linux kernel before 2.6.37-rc6, when Econet is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) by sending an Acorn Universal Networking (AUN)
|
13-02-2023 - 04:28 | 30-12-2010 - 19:00 | |
CVE-2010-4258 | 6.2 |
The do_exit function in kernel/exit.c in the Linux kernel before 2.6.36.2 does not properly handle a KERNEL_DS get_fs value, which allows local users to bypass intended access_ok restrictions, overwrite arbitrary kernel memory locations, and gain pri
|
13-02-2023 - 04:28 | 30-12-2010 - 19:00 | |
CVE-2010-4158 | 2.1 |
The sk_run_filter function in net/core/filter.c in the Linux kernel before 2.6.36.2 does not check whether a certain memory location has been initialized before executing a (1) BPF_S_LD_MEM or (2) BPF_S_LDX_MEM instruction, which allows local users t
|
13-02-2023 - 04:27 | 30-12-2010 - 19:00 | |
CVE-2010-4157 | 6.2 |
Integer overflow in the ioc_general function in drivers/scsi/gdth.c in the Linux kernel before 2.6.36.1 on 64-bit platforms allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large argu
|
13-02-2023 - 04:27 | 10-12-2010 - 19:00 | |
CVE-2010-3873 | 5.0 |
The X.25 implementation in the Linux kernel before 2.6.36.2 does not properly parse facilities, which allows remote attackers to cause a denial of service (heap memory corruption and panic) or possibly have unspecified other impact via malformed (1)
|
13-02-2023 - 04:27 | 03-01-2011 - 20:00 | |
CVE-2010-4160 | 6.9 |
Multiple integer overflows in the (1) pppol2tp_sendmsg function in net/l2tp/l2tp_ppp.c, and the (2) l2tp_ip_sendmsg function in net/l2tp/l2tp_ip.c, in the PPPoL2TP and IPoL2TP implementations in the Linux kernel before 2.6.36.2 allow local users to c
|
13-02-2023 - 04:27 | 07-01-2011 - 12:00 | |
CVE-2010-4164 | 7.8 |
Multiple integer underflows in the x25_parse_facilities function in net/x25/x25_facilities.c in the Linux kernel before 2.6.36.2 allow remote attackers to cause a denial of service (system crash) via malformed X.25 (1) X25_FAC_CLASS_A, (2) X25_FAC_CL
|
13-02-2023 - 04:27 | 03-01-2011 - 20:00 | |
CVE-2010-3849 | 4.7 |
The econet_sendmsg function in net/econet/af_econet.c in the Linux kernel before 2.6.36.2, when an econet address is configured, allows local users to cause a denial of service (NULL pointer dereference and OOPS) via a sendmsg call that specifies a N
|
13-02-2023 - 04:26 | 30-12-2010 - 19:00 | |
CVE-2010-3850 | 2.1 |
The ec_dev_ioctl function in net/econet/af_econet.c in the Linux kernel before 2.6.36.2 does not require the CAP_NET_ADMIN capability, which allows local users to bypass intended access restrictions and configure econet addresses via an SIOCSIFADDR i
|
13-02-2023 - 04:26 | 30-12-2010 - 19:00 | |
CVE-2010-3848 | 6.9 |
Stack-based buffer overflow in the econet_sendmsg function in net/econet/af_econet.c in the Linux kernel before 2.6.36.2, when an econet address is configured, allows local users to gain privileges by providing a large number of iovec structures.
|
13-02-2023 - 04:26 | 30-12-2010 - 19:00 | |
CVE-2010-3442 | 4.7 |
Multiple integer overflows in the snd_ctl_new function in sound/core/control.c in the Linux kernel before 2.6.36-rc5-next-20100929 allow local users to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a
|
13-02-2023 - 04:24 | 04-10-2010 - 21:00 | |
CVE-2010-3310 | 1.9 |
Multiple integer signedness errors in net/rose/af_rose.c in the Linux kernel before 2.6.36-rc5-next-20100923 allow local users to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a rose_getname function
|
13-02-2023 - 04:23 | 29-09-2010 - 17:00 | |
CVE-2010-3067 | 4.9 |
Integer overflow in the do_io_submit function in fs/aio.c in the Linux kernel before 2.6.36-rc4-next-20100915 allows local users to cause a denial of service or possibly have unspecified other impact via crafted use of the io_submit system call.
|
13-02-2023 - 04:21 | 21-09-2010 - 18:00 | |
CVE-2010-2946 | 2.1 |
fs/jfs/xattr.c in the Linux kernel before 2.6.35.2 does not properly handle a certain legacy format for storage of extended attributes, which might allow local users by bypass intended xattr namespace restrictions via an "os2." substring at the begin
|
13-02-2023 - 04:21 | 29-09-2010 - 17:00 | |
CVE-2010-4083 | 1.9 |
The copy_semid_to_user function in ipc/sem.c in the Linux kernel before 2.6.36 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via a (1) IPC_INFO, (2) SEM_INFO, (3
|
14-08-2020 - 15:23 | 30-11-2010 - 22:14 | |
CVE-2010-4072 | 1.9 |
The copy_shmid_to_user function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the shmct
|
14-08-2020 - 15:19 | 29-11-2010 - 16:00 | |
CVE-2010-4081 | 1.9 |
The snd_hdspm_hwdep_ioctl function in sound/pci/rme9652/hdspm.c in the Linux kernel before 2.6.36-rc6 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via an SNDRV_
|
13-08-2020 - 13:15 | 30-11-2010 - 22:14 | |
CVE-2010-4073 | 1.9 |
The ipc subsystem in the Linux kernel before 2.6.37-rc1 does not initialize certain structures, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the (1) compat_sys_semctl, (2) compat
|
10-08-2020 - 19:44 | 29-11-2010 - 16:00 | |
CVE-2010-4529 | 2.1 |
Integer underflow in the irda_getsockopt function in net/irda/af_irda.c in the Linux kernel before 2.6.37 on platforms other than x86 allows local users to obtain potentially sensitive information from kernel heap memory via an IRLMP_ENUMDEVICES gets
|
07-08-2020 - 19:27 | 13-01-2011 - 19:00 | |
CVE-2010-4242 | 4.0 |
The hci_uart_tty_open function in the HCI UART driver (drivers/bluetooth/hci_ldisc.c) in the Linux kernel 2.6.36, and possibly other versions, does not verify whether the tty has a write operation, which allows local users to cause a denial of servic
|
10-10-2018 - 20:07 | 11-01-2011 - 03:00 |