SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2010-4072

Date: (C)2010-11-29 (M)2024-02-22

The copy_shmid_to_user function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the shmctl system call and the "old shm interface."

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 1.9
Exploit Score: 3.4
Impact Score: 2.9

CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: NONE
Availability: NONE

Reference:

http://www.securityfocus.com/archive/1/520102/100/0/threaded

SUSE-SA:2010:060

SUSE-SA:2011:001

SUSE-SA:2011:004

SUSE-SA:2011:007

SUSE-SA:2011:008

http://lkml.org/lkml/2010/10/6/454

http://www.openwall.com/lists/oss-security/2010/10/07/1

http://www.openwall.com/lists/oss-security/2010/10/25/3

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3af54c9bd9e6f14f896aac1bb0e8405ae0bc7a44

http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.37-rc1

http://www.vmware.com/security/advisories/VMSA-2011-0012.html

https://bugzilla.redhat.com/show_bug.cgi?id=648656

cpe:/o:opensuse:opensuse:11.3
cpe:/o:debian:debian_linux:5.0
cpe:/o:suse:linux_enterprise_server:9
cpe:/o:canonical:ubuntu_linux:10.10
...

oval:org.secpod.oval:def:400020
oval:org.secpod.oval:def:700243
oval:org.secpod.oval:def:500099
oval:org.secpod.oval:def:500112
...

© SecPod Technologies