Lucene search

[email protected]CVE-2010-3448

HistoryJan 03, 2011 - 8:00 p.m.

CVE-2010-3448

2011-01-0320:00:00

CWE-264

[email protected]

web.nvd.nist.gov

linux

kernel

cve-2010-3448

denial of service

thinkpad

x.org

local users

5.7 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

drivers/platform/x86/thinkpad_acpi.c in the Linux kernel before 2.6.34 on ThinkPad devices, when the X.Org X server is used, does not properly restrict access to the video output control state, which allows local users to cause a denial of service (system hang) via a (1) read or (2) write operation.

CPENameOperatorVersion
linux:linux_kernellinux linux kernellt2.6.34

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	lt	2.6.34

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=565790

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b525c06cdbd8a3963f0173ccd23f9147d4c384b5

openwall.com/lists/oss-security/2010/06/23/2

openwall.com/lists/oss-security/2010/09/28/1

openwall.com/lists/oss-security/2010/09/29/7

openwall.com/lists/oss-security/2010/09/30/1

openwall.com/lists/oss-security/2010/09/30/6

www.debian.org/security/2010/dsa-2126

www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34

bugzilla.redhat.com/show_bug.cgi?id=652122

exchange.xforce.ibmcloud.com/vulnerabilities/64580

Social References

5.7 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2010-3448

veracode1 ubuntucve1 prion1 redhat1 centos1 oraclelinux1 openvas10 nessus4 ubuntu5 debian1 securityvulns2 osv1