CVE - CVE-2010-0415

CVE-ID
CVE-2010-0415	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The do_pages_move function in mm/migrate.c in the Linux kernel before 2.6.33-rc7 does not validate node values, which allows local users to read arbitrary kernel memory locations, cause a denial of service (OOPS), and possibly have unspecified other impact by specifying a node that is not part of the kernel's node set.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX URL:http://www.securityfocus.com/archive/1/516397/100/0/threaded MISC:38144 URL:http://www.securityfocus.com/bid/38144 MISC:38492 URL:http://secunia.com/advisories/38492 MISC:38557 URL:http://secunia.com/advisories/38557 MISC:38779 URL:http://secunia.com/advisories/38779 MISC:38922 URL:http://secunia.com/advisories/38922 MISC:39033 URL:http://secunia.com/advisories/39033 MISC:43315 URL:http://secunia.com/advisories/43315 MISC:ADV-2010-0638 URL:~~http://www.vupen.com/english/advisories/2010/0638~~ (Obsolete source) MISC:DSA-1996 URL:http://www.debian.org/security/2010/dsa-1996 MISC:DSA-2005 URL:http://www.debian.org/security/2010/dsa-2005 MISC:FEDORA-2010-1787 URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035159.html MISC:FEDORA-2010-1804 URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035070.html MISC:MDVSA-2010:066 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2010:066~~ (Obsolete source) MISC:MDVSA-2010:198 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2010:198~~ (Obsolete source) MISC:RHSA-2010:0147 URL:http://www.redhat.com/support/errata/RHSA-2010-0147.html MISC:RHSA-2010:0161 URL:http://www.redhat.com/support/errata/RHSA-2010-0161.html MISC:SUSE-SA:2010:014 URL:http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00000.html MISC:SUSE-SA:2010:018 URL:http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00006.html MISC:USN-914-1 URL:http://www.ubuntu.com/usn/USN-914-1 MISC:[oss-security] 20100207 CVE request: information leak / potential crash in sys_move_pages URL:http://www.openwall.com/lists/oss-security/2010/02/07/1 MISC:[oss-security] 20100207 Re: CVE request: information leak / potential crash in sys_move_pages URL:http://www.openwall.com/lists/oss-security/2010/02/07/2 MISC:[oss-security] 20100208 Re: CVE request: information leak / potential crash in sys_move_pages URL:http://www.openwall.com/lists/oss-security/2010/02/08/2 MISC:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6f5a55f1a6c5abee15a0e878e5c74d9f1569b8b0 URL:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6f5a55f1a6c5abee15a0e878e5c74d9f1569b8b0 MISC:http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.33-rc7 URL:http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.33-rc7 MISC:http://www.vmware.com/security/advisories/VMSA-2011-0003.html URL:http://www.vmware.com/security/advisories/VMSA-2011-0003.html MISC:https://bugzilla.redhat.com/show_bug.cgi?id=562582 URL:https://bugzilla.redhat.com/show_bug.cgi?id=562582 MISC:oval:org.mitre.oval:def:9399 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9399
Assigning CNA
Red Hat, Inc.
Date Record Created
20100127	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20100127)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)