Lucene search

K
cve[email protected]CVE-2010-4649
HistoryFeb 18, 2011 - 8:00 p.m.

CVE-2010-4649

2011-02-1820:00:09
CWE-190
web.nvd.nist.gov
74
5
cve-2010-4649
integer overflow
ib_uverbs_poll_cq
linux kernel
nvd
security vulnerability

6.6 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.1%

Integer overflow in the ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large value of a certain structure member.

Affected configurations

NVD
Node
linuxlinux_kernelRange<2.6.37
Node
redhatenterprise_linux_desktopMatch5.0
OR
redhatenterprise_linux_eusMatch5.6
OR
redhatenterprise_linux_serverMatch5.0
OR
redhatenterprise_linux_server_ausMatch5.6
OR
redhatenterprise_linux_workstationMatch5.0

Social References

More

6.6 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.1%