Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:20098
HistorySep 06, 2010 - 12:00 a.m.

Linux kernel 2.6.x irda_bind()对象清除空指针引用漏洞

2010-09-0600:00:00
Root
www.seebug.org
15

0.0004 Low

EPSS

Percentile

8.6%

JSON

BUGTRAQ ID: 42900,42936
CVE ID: CVE-2010-2954

Linux Kernel是开放源码操作系统Linux所使用的内核。

Linux Kernel的net/irda/af_irda.c文件中的irda_bind()函数在试图释放某些对象时存在错误,本地用户可以通过尝试绑定AF_IRDA套接字并触发错误来导致空指针引用。

如果irda_open_tsap()失败,irda_bind()错误的释放了->ias_obj对象,具体来讲是没有释放附加到对象上的hashbin并将self->ias_obj指针重置为NULL。

Linux kernel 2.6.x
厂商补丁:

Linux

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git;a=commitdiff;h=628e300cccaa628d8fb92aa28cb7530a3d5f2257

Related

cve 1
prion 1
ubuntucve 1
nessus 14
openvas 31
debian 1
securityvulns 2
osv 1
fedora 4
suse 6
ubuntu 6
cve
cve
CVE-2010-2954
2010-09-03 20:00:00
prion
prion
Null pointer dereference
2010-09-03 20:00:00
ubuntucve
ubuntucve
CVE-2010-2954
2010-09-03 00:00:00
nessus
nessus
Fedora 13 : kernel-2.6.34.6-54.fc13 (2010-14235)
2010-09-09 00:00:00
Debian DSA-2110-1 : linux-2.6 - privilege escalation/denial of service/information leak
2010-09-20 00:00:00
openSUSE Security Update : kernel (openSUSE-SU-2010:0634-1)
2014-06-13 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-2110-1)
2010-10-10 00:00:00
Debian Security Advisory DSA 2110-1 (linux-2.6)
2010-10-10 00:00:00
Fedora Update for kernel FEDORA-2010-14235
2010-09-10 00:00:00
debian
debian
[SECURITY] [DSA 2110-1] New Linux 2.6.26 packages fix several issues
2010-09-17 15:45:07
securityvulns
securityvulns
[SECURITY] [DSA 2110-1] New Linux 2.6.26 packages fix several issues
2010-09-20 00:00:00
Linux kernel multiple security vulnerabilities
2010-09-20 00:00:00
osv
osv
linux-2.6 - several issues
2010-09-17 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: kernel-2.6.35.4-28.fc14
2010-09-22 04:10:26
[SECURITY] Fedora 13 Update: kernel-2.6.34.6-54.fc13
2010-09-09 01:17:51
[SECURITY] Fedora 13 Update: kernel-2.6.34.7-56.fc13
2010-09-21 01:30:38
suse
suse
local privilege escalation in kernel
2010-09-17 16:49:15
local privilege escalation in kernel
2010-10-13 18:00:32
local privilege escalation in kernel
2010-11-03 13:13:23
ubuntu
ubuntu
Linux kernel vulnerabilities
2010-10-19 00:00:00
Linux kernel (OMAP4) vulnerabilities
2011-04-20 00:00:00
Linux kernel vulnerabilities
2011-02-25 00:00:00

0.0004 Low

EPSS

Percentile

8.6%

JSON
Related for SSV:20098
cve1prion1ubuntucve1nessus14openvas31debian1securityvulns2osv1fedora4suse6ubuntu6