Lucene search
Ubuntu.comUB:CVE-2010-1148HistoryApr 12, 2010 - 12:00 a.m.
CVE-2010-1148
2010-04-1200:00:00
ubuntu.com
ubuntu.com
11
4.7 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
0.0004 Low
EPSS
Percentile
5.1%
The cifs_create function in fs/cifs/dir.c in the Linux kernel 2.6.33.2 and
earlier allows local users to cause a denial of service (NULL pointer
dereference and OOPS) or possibly have unspecified other impact via a NULL
nameidata (aka nd) field in a POSIX file-creation request to a server that
supports UNIX extensions.
Notes
| Author | Note |
|---|---|
| smb | Though by now this area of code has been modified again so the call to posix open does not use that function anymore. |
Related
cve
cve
CVE-2010-1148
2010-04-12 17:30:00
cvelist
cvelist
CVE-2010-1148
2010-04-12 17:00:00
prion
prion
Null pointer dereference
2010-04-12 17:30:00
nvd
nvd
CVE-2010-1148
2010-04-12 17:30:00
seebug
seebug
Linux kernel 2.6.x cifs_create()ε½ζ°η©ΊζιεΌη¨ζΌζ΄
2010-04-09 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2010-06-03 00:00:00
Linux kernel regression
2010-06-04 00:00:00
nessus
nessus
Ubuntu 6.06 LTS / 8.04 LTS / 9.04 / 9.10 / 10.04 LTS : linux, linux-source-2.6.15 vulnerabilities (USN-947-1)
2010-06-04 00:00:00
Ubuntu 10.04 LTS : linux regression (USN-947-2)
2010-06-04 00:00:00
openSUSE Security Update : kernel (openSUSE-SU-2010:0664-1)
2010-09-24 00:00:00
openvas
openvas
Ubuntu Update for linux regression USN-947-2
2010-06-07 00:00:00
Ubuntu Update for Linux kernel vulnerabilities USN-947-1
2010-06-07 00:00:00
Ubuntu: Security Advisory (USN-947-1)
2010-06-07 00:00:00
suse
suse
local privilege escalation in kernel
2010-09-23 16:37:26
4.7 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
0.0004 Low
EPSS
Percentile
5.1%
Related for UB:CVE-2010-1148