CVE-2010-4074
kernel: drivers/usb/serial/mos*.c: reading uninitialized stack memory
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
The USB subsystem in the Linux kernel before 2.6.36-rc5 does not properly initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to TIOCGICOUNT ioctl calls, and the (1) mos7720_ioctl function in drivers/usb/serial/mos7720.c and (2) mos7840_ioctl function in drivers/usb/serial/mos7840.c.
El subsistema USB del kernel de Linux en versiones anteriores a la 2.6.36-rc5 no inicializa apropiadamente miembros de estructuras, lo que permite a usuarios locales obtener información potencialmente confidencial de la memoria de la pila del kernel a través de vectores relacionados con llamadas ioctl TIOCGICOUNT, y la (1) función mos7720_ioctl de drivers/usb/serial/mos7720.c y (2) mos7840_ioctl de drivers/usb/serial/mos7840.c.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2010-10-25 CVE Reserved
- 2010-11-29 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (14)
| URL | Tag | Source |
|---|---|---|
| http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a0846f1868b11cd827bdfeaf4527d8b1b1c0b098 | X_refsource_confirm | |
| http://secunia.com/advisories/42890 | Third Party Advisory | |
| http://www.kernel.org/pub/linux/kernel/v2.6/testing/v2.6.36/ChangeLog-2.6.36-rc5 | Broken Link | |
| http://www.openwall.com/lists/oss-security/2010/10/06/6 | Mailing List |
|
| http://www.securityfocus.com/bid/45074 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lkml.org/lkml/2010/9/15/392 | 2023-11-07 | |
| http://www.openwall.com/lists/oss-security/2010/09/25/2 | 2023-11-07 | |
| http://www.openwall.com/lists/oss-security/2010/10/07/1 | 2023-11-07 | |
| http://www.openwall.com/lists/oss-security/2010/10/25/3 | 2023-11-07 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=648659 | 2011-01-11 |
| URL | Date | SRC |
|---|---|---|
| http://www.debian.org/security/2010/dsa-2126 | 2023-11-07 | |
| http://www.redhat.com/support/errata/RHSA-2010-0958.html | 2023-11-07 | |
| http://www.redhat.com/support/errata/RHSA-2011-0007.html | 2023-11-07 | |
| https://access.redhat.com/security/cve/CVE-2010-4074 | 2011-01-11 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | < 2.6.36 Search vendor "Linux" for product "Linux Kernel" and version " < 2.6.36" | - |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 2.6.36 Search vendor "Linux" for product "Linux Kernel" and version "2.6.36" | - |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 2.6.36 Search vendor "Linux" for product "Linux Kernel" and version "2.6.36" | rc1 |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 2.6.36 Search vendor "Linux" for product "Linux Kernel" and version "2.6.36" | rc2 |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 2.6.36 Search vendor "Linux" for product "Linux Kernel" and version "2.6.36" | rc3 |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 2.6.36 Search vendor "Linux" for product "Linux Kernel" and version "2.6.36" | rc4 |
Affected
| ||||||
| Debian Search vendor "Debian" | Debian Linux Search vendor "Debian" for product "Debian Linux" | 5.0 Search vendor "Debian" for product "Debian Linux" and version "5.0" | - |
Affected
| ||||||