NVD

Id
15442  
Name
CVE-2010-4157  
Description
Integer overflow in the ioc_general function in drivers/scsi/gdth.c in the Linux kernel before 2.6.36.1 on 64-bit platforms allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large argument in an ioctl call.  
Reject
 
CVSS Version
2  
CVSS Score
6  
Severity
Medium  
CVSS Base Score
6  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
1.5  
CVSS Vector
(AV:L/AC:H/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-12-10  
Modified Date
2012-03-19  
Seq
2010-4157  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
87073 15442 CVE-2010-4157 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=f63ae56e4e97fb12053590e41a4fa59e7daa74a4  View
87074 15442 CVE-2010-4157 FEDORA-2010-18983  View
87075 15442 CVE-2010-4157 SUSE-SA:2010:060  View
87076 15442 CVE-2010-4157 SUSE-SA:2011:001  View
87077 15442 CVE-2010-4157 SUSE-SA:2011:002  View
87078 15442 CVE-2010-4157 SUSE-SA:2011:004  View
87079 15442 CVE-2010-4157 SUSE-SA:2011:007  View
87080 15442 CVE-2010-4157 SUSE-SA:2011:008  View
87081 15442 CVE-2010-4157 [linux-scsi] 20101008 [patch] gdth: integer overflow in ioctl  View
87082 15442 CVE-2010-4157 [oss-security] 20101108 CVE request: kernel: gdth: integer overflow in ioc_general()  View
87083 15442 CVE-2010-4157 [oss-security] 20101108 Re: CVE request: kernel: gdth: integer overflow in ioc_general()  View
87084 15442 CVE-2010-4157 [oss-security] 20101109 Re: CVE request: kernel: gdth: integer overflow in ioc_general()  View
87085 15442 CVE-2010-4157 [oss-security] 20101109 Re: CVE request: kernel: gdth: integer overflow in ioc_general()  View
87086 15442 CVE-2010-4157 [oss-security] 20101110 Re: CVE request: kernel: gdth: integer overflow in ioc_general()  View
87087 15442 CVE-2010-4157 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36.1  View
87088 15442 CVE-2010-4157 RHSA-2010:0958  View
87089 15442 CVE-2010-4157 RHSA-2011:0004  View
87090 15442 CVE-2010-4157 RHSA-2011:0162  View
87091 15442 CVE-2010-4157 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console  View
87092 15442 CVE-2010-4157 44648  View
87093 15442 CVE-2010-4157 http://www.vmware.com/security/advisories/VMSA-2011-0012.html  View
87094 15442 CVE-2010-4157 ADV-2010-3321  View
87095 15442 CVE-2010-4157 ADV-2011-0012  View
87096 15442 CVE-2010-4157 ADV-2011-0024  View
87097 15442 CVE-2010-4157 ADV-2011-0124  View
87098 15442 CVE-2010-4157 ADV-2011-0168  View
87099 15442 CVE-2010-4157 ADV-2011-0298  View
87100 15442 CVE-2010-4157 ADV-2011-0375  View
87101 15442 CVE-2010-4157 https://bugzilla.redhat.com/show_bug.cgi?id=651147  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
36895 JVNDB-2010-002675 Linux kernel の ioc_general 関数における重要な情報を取得される脆弱性 64-bit プラットフォーム上で稼働している Linux kernel の drivers/scsi/gdth.c 内にある ioc_general 関数には、整数オーバーフローの脆弱性が存在します。 CVE-2010-4157 46737 CVE-2010-4157 15442 6 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002675.html 2010-11-22 2012-12-21 View