CVE-2010-4250

2012-06-2123:55:01

CWE-399

[email protected]

web.nvd.nist.gov

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

AI Score

5.8

Confidence

High

EPSS

Percentile

15.7%

JSON

Memory leak in the inotify_init1 function in fs/notify/inotify/inotify_user.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service (memory consumption) via vectors involving failed attempts to create files.

Affected configurations

Nvd

Node

linuxlinux_kernelRange≤2.6.36.4

linuxlinux_kernelMatch2.6.36.1

linuxlinux_kernelMatch2.6.36.2

linuxlinux_kernelMatch2.6.36.3

VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel2.6.36.1cpe:2.3:o:linux:linux_kernel:2.6.36.1:*:*:*:*:*:*:*
linuxlinux_kernel2.6.36.2cpe:2.3:o:linux:linux_kernel:2.6.36.2:*:*:*:*:*:*:*
linuxlinux_kernel2.6.36.3cpe:2.3:o:linux:linux_kernel:2.6.36.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	2.6.36.1	cpe:2.3:o:linux:linux_kernel:2.6.36.1:::::::*
linux	linux_kernel	2.6.36.2	cpe:2.3:o:linux:linux_kernel:2.6.36.2:::::::*
linux	linux_kernel	2.6.36.3	cpe:2.3:o:linux:linux_kernel:2.6.36.3:::::::*