| Max CVSS | 7.2 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2010-4347 | 6.9 |
The ACPI subsystem in the Linux kernel before 2.6.36.2 uses 0222 permissions for the debugfs custom_method file, which allows local users to gain privileges by placing a custom ACPI method in the ACPI interpreter tables, related to the acpi_debugfs_i
|
13-02-2023 - 04:28 | 22-12-2010 - 21:00 | |
| CVE-2010-4250 | 4.9 |
Memory leak in the inotify_init1 function in fs/notify/inotify/inotify_user.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service (memory consumption) via vectors involving failed attempts to create files.
|
13-02-2023 - 04:28 | 21-06-2012 - 23:55 | |
| CVE-2010-4249 | 4.9 |
The wait_for_unix_gc function in net/unix/garbage.c in the Linux kernel before 2.6.37-rc3-next-20101125 does not properly select times for garbage collection of inflight sockets, which allows local users to cause a denial of service (system hang) via
|
13-02-2023 - 04:28 | 29-11-2010 - 16:00 | |
| CVE-2010-4248 | 4.9 |
Race condition in the __exit_signal function in kernel/exit.c in the Linux kernel before 2.6.37-rc2 allows local users to cause a denial of service via vectors related to multithreaded exec, the use of a thread group leader in kernel/posix-cpu-timers
|
13-02-2023 - 04:28 | 30-11-2010 - 21:38 | |
| CVE-2010-4346 | 2.1 |
The install_special_mapping function in mm/mmap.c in the Linux kernel before 2.6.37-rc6 does not make an expected security_file_mmap function call, which allows local users to bypass intended mmap_min_addr restrictions and possibly conduct NULL point
|
13-02-2023 - 04:28 | 22-12-2010 - 21:00 | |
| CVE-2010-4162 | 4.7 |
Multiple integer overflows in fs/bio.c in the Linux kernel before 2.6.36.2 allow local users to cause a denial of service (system crash) via a crafted device ioctl to a SCSI device.
|
13-02-2023 - 04:27 | 03-01-2011 - 20:00 | |
| CVE-2010-4163 | 4.7 |
The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 2.6.36.2 allows local users to cause a denial of service (panic) via a zero-length I/O request in a device ioctl to a SCSI device.
|
13-02-2023 - 04:27 | 03-01-2011 - 20:00 | |
| CVE-2010-4165 | 4.9 |
The do_tcp_setsockopt function in net/ipv4/tcp.c in the Linux kernel before 2.6.37-rc2 does not properly restrict TCP_MAXSEG (aka MSS) values, which allows local users to cause a denial of service (OOPS) via a setsockopt call that specifies a small v
|
13-02-2023 - 04:27 | 22-11-2010 - 13:00 | |
| CVE-2010-4160 | 6.9 |
Multiple integer overflows in the (1) pppol2tp_sendmsg function in net/l2tp/l2tp_ppp.c, and the (2) l2tp_ip_sendmsg function in net/l2tp/l2tp_ip.c, in the PPPoL2TP and IPoL2TP implementations in the Linux kernel before 2.6.36.2 allow local users to c
|
13-02-2023 - 04:27 | 07-01-2011 - 12:00 | |
| CVE-2011-0521 | 7.2 |
The dvb_ca_ioctl function in drivers/media/dvb/ttpci/av7110_ca.c in the Linux kernel before 2.6.38-rc2 does not check the sign of a certain integer field, which allows local users to cause a denial of service (memory corruption) or possibly have unsp
|
13-02-2023 - 03:22 | 02-02-2011 - 23:00 | |
| CVE-2010-4655 | 2.1 |
net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel heap memory by leveraging the CAP_NET_ADMIN capability for an ethtool i
|
13-02-2023 - 03:21 | 18-07-2011 - 19:55 | |
| CVE-2010-4649 | 6.9 |
Integer overflow in the ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large val
|
13-02-2023 - 03:21 | 18-02-2011 - 20:00 | |
| CVE-2010-4656 | 7.2 |
The iowarrior_write function in drivers/usb/misc/iowarrior.c in the Linux kernel before 2.6.37 does not properly allocate memory, which might allow local users to trigger a heap-based buffer overflow, and consequently cause a denial of service or gai
|
13-02-2023 - 03:21 | 18-07-2011 - 19:55 | |
| CVE-2010-4648 | 3.3 |
The orinoco_ioctl_set_auth function in drivers/net/wireless/orinoco/wext.c in the Linux kernel before 2.6.37 does not properly implement a TKIP protection mechanism, which makes it easier for remote attackers to obtain access to a Wi-Fi network by re
|
13-02-2023 - 03:20 | 21-06-2012 - 23:55 | |
| CVE-2010-3477 | 2.1 |
The tcf_act_police_dump function in net/sched/act_police.c in the actions implementation in the network queueing functionality in the Linux kernel before 2.6.36-rc4 does not properly initialize certain structure members, which allows local users to o
|
14-08-2020 - 14:03 | 21-09-2010 - 20:00 | |
| CVE-2011-1044 | 2.1 |
The ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before 2.6.37 does not initialize a certain response buffer, which allows local users to obtain potentially sensitive information from kernel memory via vector
|
12-08-2020 - 19:39 | 18-02-2011 - 20:00 | |
| CVE-2010-4668 | 4.7 |
The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 2.6.37-rc7 allows local users to cause a denial of service (panic) via a zero-length I/O request in a device ioctl to a SCSI device, related to an unaligned map. NOTE: th
|
12-08-2020 - 19:37 | 03-01-2011 - 20:00 | |
| CVE-2010-4565 | 2.1 |
The bcm_connect function in net/can/bcm.c (aka the Broadcast Manager) in the Controller Area Network (CAN) implementation in the Linux kernel 2.6.36 and earlier creates a publicly accessible file with a filename containing a kernel memory address, wh
|
10-08-2020 - 19:56 | 29-12-2010 - 18:00 | |
| CVE-2010-4242 | 4.0 |
The hci_uart_tty_open function in the HCI UART driver (drivers/bluetooth/hci_ldisc.c) in the Linux kernel 2.6.36, and possibly other versions, does not verify whether the tty has a write operation, which allows local users to cause a denial of servic
|
10-10-2018 - 20:07 | 11-01-2011 - 03:00 |