Lucene search
RootSSV:20199HistoryOct 26, 2010 - 12:00 a.m.
Linux Kernel RDS协议本地权限提升漏洞
2010-10-2600:00:00
Root
www.seebug.org
27
0.001 Low
EPSS
Percentile
37.3%
BUGTRAQ ID: 44219
CVE ID: CVE-2010-3904
Linux Kernel是开放源码操作系统Linux所使用的内核。
在Linux上,使用了iovec结构执行recvmsg()样式套接字调用以允许用户指定用于接收套接字数据的缓冲区基址和大小。每个报文家族负责定义拷贝套接字数据的函数,内核接收到这些数据后返回给用户空间以便用户程序处理所接收到的网络数据。
在将数据拷贝到用户空间时,RDS协议没有确认用户所提供iovec结构的基址指向了有效的用户空间地址便使用 __copy_to_user_inatomic()函数拷贝数据。因此,如果提供内核地址为iovec基址并发布recvmsg()样式套接字调用,本地用户就可以向内核内存中写入任意数据,导致root用户权限提升。
Linux kernel <= 2.6.36-rc8
厂商补丁:
Linux
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
http://sebug.net/exploit/20191/
Related
prion
prion
Design/Logic Flaw
2010-12-06 20:13:00
altlinux
altlinux
openvas
openvas
CentOS Update for kernel CESA-2010:0792 centos5 i386
2011-08-09 00:00:00
RedHat Update for kernel RHSA-2010:0792-01
2010-11-04 00:00:00
Oracle Linux Local Check: ELSA-2010-2010
2015-10-06 00:00:00
redhat
redhat
(RHSA-2010:0792) Important: kernel security update
2010-10-25 00:00:00
(RHSA-2010:0842) Important: kernel security and bug fix update
2010-11-10 00:00:00
nessus
nessus
CentOS 5 : kernel (CESA-2010:0792)
2010-11-24 00:00:00
Scientific Linux Security Update : kernel on SL5.x i386/x86_64
2012-08-01 00:00:00
RHEL 5 : kernel (RHSA-2010:0792)
2010-10-26 00:00:00
zdt
zdt
Linux 2.6.30 < 2.6.36-rc8 - Reliable Datagram Sockets (RDS) Privilege Escalation Exploit
2018-05-21 00:00:00
Reliable Datagram Sockets (RDS) Privilege Escalation Exploit
2018-05-19 00:00:00
securityvulns
securityvulns
Linux kernel RDS protocol privilege escalation
2010-10-24 00:00:00
VSR Advisories: Linux RDS Protocol Local Privilege Escalation
2010-10-24 00:00:00
metasploit
metasploit
Reliable Datagram Sockets (RDS) rds_page_copy_user Privilege Escalation
2019-12-18 20:05:19
Reliable Datagram Sockets (RDS) Privilege Escalation
2018-05-03 12:51:21
cve
cve
CVE-2010-3904
2010-12-06 20:13:00
centos
centos
kernel security update
2010-10-26 06:38:54
seebug
seebug
Linux Kernel <= 2.6.36-rc8 - RDS Protocol Local Privilege Escalation
2014-07-01 00:00:00
Linux RDS Protocol Local Privilege Escalation
2010-10-26 00:00:00
oraclelinux
oraclelinux
kernel security update
2010-10-22 00:00:00
kernel security update
2010-10-27 00:00:00
Oracle Linux 5 Unbreakable Enterprise kernel security fix update
2010-10-22 00:00:00
canvas
canvas
Immunity Canvas: LINUX_RDS
2010-12-06 20:13:00
cert
cert
Linux kernel RDS protocol vulnerability
2010-10-25 00:00:00
packetstorm
packetstorm
Reliable Datagram Sockets (RDS) Privilege Escalation
2018-05-19 00:00:00
vReliable Datagram Sockets (RDS) rds_page_copy_user Privilege Escalation
2019-12-23 00:00:00
ubuntucve
ubuntucve
CVE-2010-3904
2010-10-19 00:00:00
attackerkb
attackerkb
CVE-2010-3904
2010-12-06 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:50:15
exploitpack
exploitpack
Linux Kernel 2.6.36-rc8 - RDS Protocol Local Privilege Escalation
2010-10-19 00:00:00
cisa_kev
cisa_kev
Linux Kernel Improper Input Validation Vulnerability
2023-05-12 00:00:00
exploitdb
exploitdb
suse
suse
local privilege escalation in kernel
2010-10-28 16:14:32
local privilege escalation in kernel
2010-11-11 15:47:32
remote denial of service, local privilege in kernel-rt
2011-02-07 11:58:56
thn
thn
Two Linux vulnerabilities to get root access
2010-10-30 07:21:00
Warning: Samsung Devices Under Attack! New Security Flaw Exposed
2023-05-20 04:15:00
fedora
fedora
[SECURITY] Fedora 14 Update: kernel-2.6.35.6-48.fc14
2010-10-28 06:10:03
[SECURITY] Fedora 14 Update: kernel-2.6.35.9-64.fc14
2010-12-05 00:42:46
[SECURITY] Fedora 14 Update: kernel-2.6.35.13-92.fc14
2011-06-11 04:22:38
ubuntu
ubuntu
Linux kernel vulnerabilities
2010-10-19 00:00:00
Linux kernel (OMAP4) vulnerabilities
2011-04-20 00:00:00
Linux kernel vulnerabilities
2011-02-28 00:00:00
vmware
vmware
VMware ESXi and ESX updates to third party libraries and ESX Service Console
2011-10-12 00:00:00
VMware ESX third party updates for Service Console packages glibc and dhcp
2011-10-12 00:00:00