Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:20276
HistoryDec 01, 2010 - 12:00 a.m.

Linux Kernel "hdsp.c" IOCTL本地信息泄露漏洞

2010-12-0100:00:00
Root
www.seebug.org
12

0.0004 Low

EPSS

Percentile

8.6%

JSON

BUGTRAQ ID: 45063
CVE ID: CVE-2010-4081

Linux Kernel是开放源码操作系统Linux所使用的内核。

Linux Kernel在实现上存在漏洞,本地攻击者可利用此漏洞获取敏感信息,可能有利于执行其他攻击。

hdspm.c和hdsp.c中的SNDRV_HDSP_IOCTL_GET_CONFIG_INFO和 SNDRV_HDSP_IOCTL_GET_CONFIG_INFO允许未授权用户读取未初始化内核栈内存,因为栈上公布的 hdsp{m}_config_info的几个字段在复制给用户之前未改变或清零。

Linux kernel 2.6.0 - 2.6.37
厂商补丁:

Linux

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.kernel.org/

Related

veracode 1
prion 1
ubuntucve 1
cve 1
openvas 26
nessus 23
ubuntu 8
redhat 2
suse 5
debian 1
securityvulns 2
osv 1
oraclelinux 2
vmware 2
packetstorm 1
veracode
veracode
Information Disclosure
2020-04-10 00:55:39
prion
prion
Information disclosure
2010-11-30 22:14:00
ubuntucve
ubuntucve
CVE-2010-4081
2010-11-30 00:00:00
cve
cve
CVE-2010-4081
2010-11-30 22:14:00
openvas
openvas
Ubuntu Update for linux-source-2.6.15 vulnerabilities USN-1071-1
2011-02-28 00:00:00
Ubuntu Update for linux-source-2.6.15 vulnerabilities USN-1071-1
2011-02-28 00:00:00
Oracle Linux Local Check: ELSA-2011-0017
2015-10-06 00:00:00
nessus
nessus
Ubuntu 6.06 LTS : linux-source-2.6.15 vulnerabilities (USN-1071-1)
2011-03-01 00:00:00
RHEL 5 : kernel (RHSA-2011:0017)
2011-01-14 00:00:00
Oracle Linux 5 : Oracle / Linux / 5.6 / kernel (ELSA-2011-0017)
2023-09-07 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2011-02-25 00:00:00
Linux kernel vulnerabilities
2011-01-10 00:00:00
Linux kernel vulnerabilities
2011-02-25 00:00:00
redhat
redhat
(RHSA-2011:0017) Important: Red Hat Enterprise Linux 5.6 kernel security and bug fix update
2011-01-13 00:00:00
(RHSA-2011:0007) Important: kernel security and bug fix update
2011-01-11 00:00:00
suse
suse
remote denial of service in kernel
2010-12-14 13:42:46
potential local privilege escalation in kernel
2011-01-03 15:33:25
local privilege escalation, remote denial of in kernel
2011-02-11 13:07:24
debian
debian
[SECURITY] [DSA 2126-1] New Linux 2.6.26 packages fix several issues
2010-11-27 04:49:43
securityvulns
securityvulns
[SECURITY] [DSA 2126-1] New Linux 2.6.26 packages fix several issues
2010-12-01 00:00:00
Linux kernel multiple security vulnerabilities
2010-12-09 00:00:00
osv
osv
linux-2.6 - several issues
2010-11-26 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2011-02-12 00:00:00
Oracle Linux 5.6 kernel security and bug fix update
2011-01-20 00:00:00
vmware
vmware
VMware ESXi and ESX updates to third party libraries and ESX Service Console
2011-10-12 00:00:00
VMware ESX third party updates for Service Console packages glibc and dhcp
2011-10-12 00:00:00
packetstorm
packetstorm
Ubuntu Security Notice USN-1202-1
2011-09-14 00:00:00

0.0004 Low

EPSS

Percentile

8.6%

JSON
Related for SSV:20276
veracode1prion1ubuntucve1cve1openvas26nessus23ubuntu8redhat2suse5debian1securityvulns2osv1oraclelinux2vmware2packetstorm1