CVE - CVE-2010-4158

CVE-ID
CVE-2010-4158	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The sk_run_filter function in net/core/filter.c in the Linux kernel before 2.6.36.2 does not check whether a certain memory location has been initialized before executing a (1) BPF_S_LD_MEM or (2) BPF_S_LDX_MEM instruction, which allows local users to obtain potentially sensitive information from kernel stack memory via a crafted socket filter.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20101109 Kernel 0-day URL:http://www.securityfocus.com/archive/1/514705 BUGTRAQ:20101118 Re: Kernel 0-day URL:http://www.securityfocus.com/archive/1/514845 BUGTRAQ:20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console URL:http://www.securityfocus.com/archive/1/520102/100/0/threaded FULLDISC:20101109 Kernel 0-day URL:http://lists.grok.org.uk/pipermail/full-disclosure/2010-November/077321.html MLIST:[netdev] 20101109 [PATCH] Prevent reading uninitialized memory with socket filters URL:http://www.spinics.net/lists/netdev/msg146361.html CONFIRM:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=57fe93b374a6b8711995c2d466c502af9f3a08bb CONFIRM:http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36.2 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=651698 CONFIRM:http://www.vmware.com/security/advisories/VMSA-2011-0012.html FEDORA:FEDORA-2010-18983 URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052513.html MANDRIVA:MDVSA-2011:029 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2011:029 REDHAT:RHSA-2010:0958 URL:http://www.redhat.com/support/errata/RHSA-2010-0958.html REDHAT:RHSA-2011:0162 URL:http://www.redhat.com/support/errata/RHSA-2011-0162.html REDHAT:RHSA-2011:0007 URL:http://www.redhat.com/support/errata/RHSA-2011-0007.html REDHAT:RHSA-2011:0017 URL:http://www.redhat.com/support/errata/RHSA-2011-0017.html SUSE:SUSE-SA:2011:001 URL:http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html SUSE:SUSE-SA:2011:002 URL:http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.html SUSE:SUSE-SA:2010:060 URL:http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00004.html SUSE:SUSE-SA:2011:004 URL:http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.html SUSE:SUSE-SA:2011:007 URL:http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html SUSE:SUSE-SA:2011:008 URL:http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00002.html BID:44758 URL:http://www.securityfocus.com/bid/44758 SECUNIA:42745 URL:http://secunia.com/advisories/42745 SECUNIA:42778 URL:http://secunia.com/advisories/42778 SECUNIA:42801 URL:http://secunia.com/advisories/42801 SECUNIA:42932 URL:http://secunia.com/advisories/42932 SECUNIA:42963 URL:http://secunia.com/advisories/42963 SECUNIA:42884 URL:http://secunia.com/advisories/42884 SECUNIA:42890 URL:http://secunia.com/advisories/42890 SECUNIA:43291 URL:http://secunia.com/advisories/43291 SECUNIA:46397 URL:http://secunia.com/advisories/46397 VUPEN:ADV-2010-3321 URL:http://www.vupen.com/english/advisories/2010/3321 VUPEN:ADV-2011-0012 URL:http://www.vupen.com/english/advisories/2011/0012 VUPEN:ADV-2011-0124 URL:http://www.vupen.com/english/advisories/2011/0124 VUPEN:ADV-2011-0168 URL:http://www.vupen.com/english/advisories/2011/0168 VUPEN:ADV-2011-0298 URL:http://www.vupen.com/english/advisories/2011/0298 VUPEN:ADV-2011-0375 URL:http://www.vupen.com/english/advisories/2011/0375
Assigning CNA
N/A
Date Entry Created
20101104	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20101104)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org

Use of the Common Vulnerabilities and Exposures (CVE®) List and the associated references from this website are subject to the terms of use. CVE is sponsored by US-CERT in the office of Cybersecurity and Communications at the U.S. Department of Homeland Security. Copyright © 1999–2018, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation. For more information, please contact us.