Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:20278
HistoryDec 01, 2010 - 12:00 a.m.

Linux Kernel "setup_arg_pages()"本地拒绝服务漏洞

2010-12-0100:00:00
Root
www.seebug.org
20

0.0004 Low

EPSS

Percentile

8.6%

JSON

BUGTRAQ ID: 44301
CVE ID: CVE-2010-3858

Linux Kernel是开放源码操作系统Linux所使用的内核。

Linux Kernel在实现上存在漏洞,本地攻击者可利用此漏洞导致系统崩溃。

setup_arg_pages()的CONFIG_STACK_GROWSDOWN变量未检测堆栈上argument/environment区域的大小。过大时,shift_arg_pages()会命中其BUG_ON。用非常大的RLIMIT_STACK限制时可被利用轻易地造成系统崩溃。

Linux kernel 2.6.0 - 2.6.37
厂商补丁:

Linux

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.kernel.org/

Related

veracode 1
prion 2
cve 2
ubuntucve 2
nessus 21
openvas 31
redhat 3
oraclelinux 2
centos 1
ubuntu 7
suse 3
debian 1
securityvulns 2
osv 1
vmware 2
packetstorm 1
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:52:44
prion
prion
Sql injection
2011-01-22 22:00:00
Sql injection
2010-11-30 21:38:00
cve
cve
CVE-2010-3858
2010-11-30 21:38:00
CVE-2010-4243
2011-01-22 22:00:00
ubuntucve
ubuntucve
CVE-2010-4243
2011-01-22 00:00:00
CVE-2010-3858
2010-11-30 00:00:00
nessus
nessus
Oracle Linux 6 : kernel (ELSA-2011-0283)
2013-07-12 00:00:00
RHEL 6 : kernel (RHSA-2011:0836)
2011-06-02 00:00:00
Oracle Linux 6 : kernel (ELSA-2011-0836)
2013-07-12 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2011-0836)
2015-10-06 00:00:00
RedHat Update for kernel RHSA-2011:0836-01
2012-06-06 00:00:00
RedHat Update for kernel RHSA-2011:0836-01
2012-06-06 00:00:00
redhat
redhat
(RHSA-2011:0836) Important: kernel security and bug fix update
2011-06-01 00:00:00
(RHSA-2011:0004) Important: kernel security, bug fix, and enhancement update
2011-01-04 00:00:00
(RHSA-2010:0958) Important: kernel-rt security and bug fix update
2010-12-08 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2011-06-02 00:00:00
kernel security, bug fix, and enhancement update
2011-01-04 00:00:00
centos
centos
kernel security update
2011-01-06 12:23:15
ubuntu
ubuntu
Linux kernel vulnerabilities
2011-01-10 00:00:00
Linux kernel vulnerabilities
2011-02-25 00:00:00
Linux kernel vulnerabilities
2011-02-28 00:00:00
suse
suse
remote denial of service, local privilege in kernel
2011-03-08 16:13:04
local privilege escalation, remote denial of in kernel
2011-04-18 14:12:03
remote denial of service in kernel
2011-04-28 13:57:06
debian
debian
[SECURITY] [DSA 2126-1] New Linux 2.6.26 packages fix several issues
2010-11-27 04:49:43
securityvulns
securityvulns
[SECURITY] [DSA 2126-1] New Linux 2.6.26 packages fix several issues
2010-12-01 00:00:00
Linux kernel multiple security vulnerabilities
2010-12-09 00:00:00
osv
osv
linux-2.6 - several issues
2010-11-26 00:00:00
vmware
vmware
VMware ESXi and ESX updates to third party libraries and ESX Service Console
2011-10-12 00:00:00
VMware ESX third party updates for Service Console packages glibc and dhcp
2011-10-12 00:00:00
packetstorm
packetstorm
Ubuntu Security Notice USN-1202-1
2011-09-14 00:00:00

0.0004 Low

EPSS

Percentile

8.6%

JSON
Related for SSV:20278
veracode1prion2cve2ubuntucve2nessus21openvas31redhat3oraclelinux2centos1ubuntu7suse3debian1securityvulns2osv1vmware2packetstorm1