Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2010-0003

Опубликовано: 08 янв. 2010
Источник: redhat
CVSS2: 6.6
EPSS Низкий

Описание

The print_fatal_signal function in kernel/signal.c in the Linux kernel before 2.6.32.4 on the i386 platform, when print-fatal-signals is enabled, allows local users to discover the contents of arbitrary memory locations by jumping to an address and then reading a log file, and might allow local users to cause a denial of service (system slowdown or crash) by jumping to an address.

Отчет

A future update in Red Hat Enterprise MRG may address this flaw. This issue is not planned to be fixed in Red Hat Enterprise Linux 3, due to this product being in Production 3 of its maintenance life-cycle, where only qualified security errata of important or critical impact are addressed. For further information about Errata Support Policy, visit: https://access.redhat.com/support/policy/updates/errata/

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=554578kernel: infoleak if print-fatal-signals=1

EPSS

Процентиль: 20%
0.00063
Низкий

6.6 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2010-0003

ubuntu
больше 15 лет назад

The print_fatal_signal function in kernel/signal.c in the Linux kernel before 2.6.32.4 on the i386 platform, when print-fatal-signals is enabled, allows local users to discover the contents of arbitrary memory locations by jumping to an address and then reading a log file, and might allow local users to cause a denial of service (system slowdown or crash) by jumping to an address.

nvd логотип

CVE-2010-0003

nvd
больше 15 лет назад

The print_fatal_signal function in kernel/signal.c in the Linux kernel before 2.6.32.4 on the i386 platform, when print-fatal-signals is enabled, allows local users to discover the contents of arbitrary memory locations by jumping to an address and then reading a log file, and might allow local users to cause a denial of service (system slowdown or crash) by jumping to an address.

debian логотип

CVE-2010-0003

debian
больше 15 лет назад

The print_fatal_signal function in kernel/signal.c in the Linux kernel ...

github логотип

GHSA-c942-c798-26vh

github
больше 3 лет назад

The print_fatal_signal function in kernel/signal.c in the Linux kernel before 2.6.32.4 on the i386 platform, when print-fatal-signals is enabled, allows local users to discover the contents of arbitrary memory locations by jumping to an address and then reading a log file, and might allow local users to cause a denial of service (system slowdown or crash) by jumping to an address.

oracle-oval логотип

ELSA-2010-0147

oracle-oval
больше 15 лет назад

ELSA-2010-0147: kernel security and bug fix update (IMPORTANT)

EPSS

Процентиль: 20%
0.00063
Низкий

6.6 Medium

CVSS2