Out-of-bounds

2009-08-1821:00:00

PRIOn knowledge base

www.prio-n.com

6 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.0004 Low

EPSS

Percentile

5.4%

JSON

The eisa_eeprom_read function in the parisc isa-eeprom component (drivers/parisc/eisa_eeprom.c) in the Linux kernel before 2.6.31-rc6 allows local users to access restricted memory via a negative ppos argument, which bypasses a check that assumes that ppos is positive and causes an out-of-bounds read in the readb function.

CPENameOperatorVersion
linux_kerneleq2.6.27.29
linux_kerneleq2.6.27.12
linux_kerneleq2.6.20.6
linux_kerneleq2.6.20.9
linux_kerneleq2.6.11
linux_kerneleq2.6.23.4
linux_kerneleq2.6.22.15
linux_kerneleq2.6.16.16
linux_kerneleq2.6.18.7
linux_kerneleq2.6.17.12

Name	Operator	Version
linux_kernel	eq	2.6.27.29
linux_kernel	eq	2.6.27.12
linux_kernel	eq	2.6.20.6
linux_kernel	eq	2.6.20.9
linux_kernel	eq	2.6.11
linux_kernel	eq	2.6.23.4
linux_kernel	eq	2.6.22.15
linux_kernel	eq	2.6.16.16
linux_kernel	eq	2.6.18.7
linux_kernel	eq	2.6.17.12