Lucene search

[email protected]CVE-2010-4525

HistoryJan 11, 2011 - 3:00 a.m.

CVE-2010-4525

2011-01-1103:00:00

CWE-200

[email protected]

web.nvd.nist.gov

cve-2010-4525

linux kernel

information disclosure

security vulnerability

nvd

6.8 Medium

AI Score

Confidence

High

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.3%

JSON

Linux kernel 2.6.33 and 2.6.34.y does not initialize the kvm_vcpu_events->interrupt.pad structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via unspecified vectors.

CPENameOperatorVersion
linux:linux_kernellinux linux kerneleq2.6.33
linux:linux_kernellinux linux kerneleq2.6.34

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	eq	2.6.33
linux:linux_kernel	linux linux kernel	eq	2.6.34

References

osvdb.org/70377

secunia.com/advisories/42890

www.openwall.com/lists/oss-security/2011/01/05/1

www.openwall.com/lists/oss-security/2011/01/05/9

www.openwall.com/lists/oss-security/2011/01/06/3

www.redhat.com/support/errata/RHSA-2011-0007.html

www.redhat.com/support/errata/RHSA-2011-0028.html

www.securityfocus.com/bid/45676

www.vupen.com/english/advisories/2011/0123

bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4525

exchange.xforce.ibmcloud.com/vulnerabilities/64519

6.8 Medium

AI Score

Confidence

High

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2010-4525

nessus6 veracode1 redhat2 ubuntucve1 prion1 seebug1 openvas6 oraclelinux2 suse1