CVE-2010-4077

🗓️ 29 Nov 2010 15:00:00Reported by mitreType

The ntty_ioctl_tiocgicount function in drivers/char/nozomi.c in the Linux kernel 2.6.36.1 and earlier does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call

Reporter	Title	Published	Views	Family All 113
0day.today	Linux <= 2.6.37-rc1 serial_core TIOCGICOUNT Leak Exploit	15 Mar 201100:00	–	zdt
Cvelist	CVE-2010-4077	29 Nov 201015:00	–	cvelist
Exploit DB	Linux Kenel 2.6.37-rc1 - serial_core TIOCGICOUNT Leak	14 Mar 201100:00	–	exploitdb
Oracle linux	kernel security and bug fix update	12 Feb 201100:00	–	oraclelinux
EUVD	EUVD-2010-4053	7 Oct 202500:30	–	euvd
exploitpack	Linux Kenel 2.6.37-rc1 - serial_core TIOCGICOUNT Leak	14 Mar 201100:00	–	exploitpack
Fedora	[SECURITY] Fedora 14 Update: kernel-2.6.35.9-64.fc14	5 Dec 201000:42	–	fedora
Fedora	[SECURITY] Fedora 13 Update: kernel-2.6.34.7-63.fc13	7 Dec 201020:07	–	fedora
Tenable Nessus	Fedora 14 : kernel-2.6.35.9-64.fc14 (2010-18493)	6 Dec 201000:00	–	nessus
Tenable Nessus	Fedora 13 : kernel-2.6.34.7-63.fc13 (2010-18506)	8 Dec 201000:00	–	nessus

NVD

Node

linux linux_kernelRange≤2.6.36.1

Source	Link
openwall	www.openwall.com/lists/oss-security/2010/09/25/2
securityfocus	www.securityfocus.com/bid/45059
secunia	www.secunia.com/advisories/42890
git	www.git.kernel.org/
redhat	www.redhat.com/support/errata/RHSA-2010-0958.html
securityreason	www.securityreason.com/securityalert/8129
openwall	www.openwall.com/lists/oss-security/2010/10/07/1
openwall	www.openwall.com/lists/oss-security/2010/10/25/3
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
lkml	www.lkml.indiana.edu/hypermail//linux/kernel/1009.1/03387.html

29 Apr 2026 01:13Current

6.7Medium risk

Vulners AI Score6.7

CVSS 21.9

EPSS0.00482

CWE-200