Vulnerability in Linux Linux_kernel
CVE-2010-4082
The viafb_ioctl_get_viafb_info function in drivers/video/via/ioctl.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from k…
EPSS: 0.001 (21.5th percentile) — read the EPSS interpretation.
Affected products
- Linux Linux_kernel — versions 2.6.36
- Opensuse — versions 11.3, 11.2
- Suse Linux_enterprise_desktop — versions 11
- Suse Linux_enterprise_real_time_extension — versions 11
- Suse Linux_enterprise_server — versions 11
- N/a — versions n/a
Weakness classification (CWE)
References
- [oss-security] 20100925 CVE request: multiple kernel stack memory disclosures (mailing-list, x_refsource_MLIST, Patch, Mailing List, Third Party Advisory)
- cve@mitre.org (x_refsource_CONFIRM, Broken Link)
- SUSE-SA:2011:004 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
- 42778 (x_refsource_SECUNIA, Third Party Advisory, third-party-advisory)
- 42801 (x_refsource_SECUNIA, Third Party Advisory, third-party-advisory)
- SUSE-SA:2011:002 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
- [oss-security] 20101006 Re: CVE request: multiple kernel stack memory disclosures (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)
- SUSE-SA:2011:001 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
- 42932 (x_refsource_SECUNIA, Third Party Advisory, third-party-advisory)
- RHSA-2011:0007 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)