Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2010-2955

Опубликовано: 08 сент. 2010
Источник: ubuntu
Приоритет: low
CVSS2: 2.1

Описание

The cfg80211_wext_giwessid function in net/wireless/wext-compat.c in the Linux kernel before 2.6.36-rc3-next-20100831 does not properly initialize certain structure members, which allows local users to leverage an off-by-one error in the ioctl_standard_iw_point function in net/wireless/wext-core.c, and obtain potentially sensitive information from kernel heap memory, via vectors involving an SIOCGIWESSID ioctl call that specifies a large buffer size.

РелизСтатусПримечание
dapper

DNE

devel

not-affected

3.16.0-23.31
esm-infra-legacy/trusty

not-affected

3.11.0-12.19
hardy

not-affected

jaunty

released

2.6.28-19.66
karmic

released

2.6.31-22.67
lucid

released

2.6.32-26.47
maverick

released

2.6.35-22.34
natty

not-affected

2.6.37-2.9
oneiric

not-affected

2.6.39-0.0

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

hardy

DNE

lucid

DNE

natty

DNE

oneiric

DNE

precise

not-affected

3.2.0-1600.1
quantal

not-affected

3.2.0-1602.5
raring

DNE

saucy

DNE

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

hardy

ignored

end of life
jaunty

DNE

karmic

DNE

lucid

DNE

maverick

DNE

natty

DNE

oneiric

DNE

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

hardy

DNE

jaunty

ignored

end of life
karmic

DNE

lucid

DNE

maverick

DNE

natty

DNE

oneiric

DNE

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

hardy

DNE

jaunty

DNE

karmic

DNE

lucid

ignored

end of life
maverick

DNE

natty

DNE

oneiric

DNE

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

hardy

DNE

jaunty

DNE

karmic

released

2.6.31-307.21
lucid

released

2.6.32-310.21
maverick

ignored

end of life
natty

DNE

oneiric

DNE

Показывать по

РелизСтатусПримечание
devel

not-affected

3.4.0-3.15
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [3.4.0-1.3]]
lucid

DNE

precise

DNE

quantal

DNE

saucy

DNE

trusty

not-affected

3.4.0-1.3
trusty/esm

DNE

trusty was not-affected [3.4.0-1.3]
upstream

released

2.6.36~rc4
utopic

not-affected

3.4.0-3.10

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

hardy

DNE

karmic

released

2.6.31-112.30
lucid

released

2.6.31-608.22
maverick

DNE

natty

DNE

oneiric

DNE

precise

DNE

Показывать по

РелизСтатусПримечание
devel

not-affected

3.4.0-4.23
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [3.4.0-1.9]]
lucid

DNE

precise

DNE

quantal

DNE

saucy

ignored

trusty

not-affected

3.4.0-1.9
trusty/esm

DNE

trusty was not-affected [3.4.0-1.9]
upstream

released

2.6.36~rc4
utopic

not-affected

3.4.0-3.14

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [3.1.10-8.28]]
lucid

DNE

precise

DNE

quantal

DNE

saucy

ignored

trusty

not-affected

3.1.10-8.28
trusty/esm

DNE

trusty was not-affected [3.1.10-8.28]
upstream

released

2.6.36~rc4
utopic

not-affected

3.1.10-8.28

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

hardy

DNE

jaunty

DNE

karmic

DNE

lucid

released

2.6.35-22.34~lucid1
maverick

DNE

natty

DNE

oneiric

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

hardy

DNE

lucid

not-affected

2.6.38-1.27~lucid1
maverick

DNE

natty

DNE

oneiric

DNE

precise

DNE

quantal

DNE

raring

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

hardy

DNE

lucid

not-affected

maverick

DNE

natty

DNE

oneiric

DNE

precise

DNE

quantal

DNE

raring

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

hardy

DNE

lucid

DNE

oneiric

DNE

precise

not-affected

3.5.0-18.29~precise1
quantal

DNE

raring

DNE

saucy

DNE

trusty

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

hardy

DNE

lucid

DNE

oneiric

DNE

precise

not-affected

3.8.0-19.30~precise1
quantal

DNE

raring

DNE

saucy

DNE

trusty

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

lucid

DNE

precise

not-affected

3.11.0-13.20~precise2
quantal

DNE

raring

DNE

saucy

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

2.6.36~rc4

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

lucid

DNE

precise

not-affected

3.13.0-24.46~precise1
saucy

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

2.6.36~rc4
utopic

DNE

vivid

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [3.16.0-25.33~14.04.2]]
lucid

DNE

precise

DNE

trusty

not-affected

3.16.0-25.33~14.04.2
trusty/esm

DNE

trusty was not-affected [3.16.0-25.33~14.04.2]
upstream

released

2.6.36~rc4
utopic

DNE

vivid

DNE

vivid/stable-phone-overlay

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [3.19.0-18.18~14.04.1]]
lucid

DNE

precise

DNE

trusty

not-affected

3.19.0-18.18~14.04.1
trusty/esm

DNE

trusty was not-affected [3.19.0-18.18~14.04.1]
upstream

released

2.6.36~rc4
utopic

DNE

vivid

DNE

vivid/stable-phone-overlay

DNE

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [3.0.0-3.18]]
lucid

DNE

precise

DNE

quantal

DNE

saucy

ignored

trusty

not-affected

3.0.0-3.18
trusty/esm

DNE

trusty was not-affected [3.0.0-3.18]
upstream

released

2.6.36~rc4
utopic

DNE

Показывать по

РелизСтатусПримечание
devel

not-affected

3.4.0-5.34
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [3.4.0-3.21]]
lucid

DNE

precise

DNE

quantal

DNE

saucy

ignored

trusty

not-affected

3.4.0-3.21
trusty/esm

DNE

trusty was not-affected [3.4.0-3.21]
upstream

released

2.6.36~rc4
utopic

not-affected

3.4.0-5.28

Показывать по

РелизСтатусПримечание
devel

not-affected

3.4.0-6.29
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [3.4.0-4.19]]
lucid

DNE

precise

DNE

quantal

DNE

saucy

ignored

trusty

not-affected

3.4.0-4.19
trusty/esm

DNE

trusty was not-affected [3.4.0-4.19]
upstream

released

2.6.36~rc4
utopic

not-affected

3.4.0-6.25

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

hardy

DNE

karmic

ignored

end of life
lucid

released

2.6.32-213.29
maverick

released

2.6.32-414.30
natty

DNE

oneiric

DNE

precise

DNE

Показывать по

РелизСтатусПримечание
devel

not-affected

esm-infra-legacy/trusty

DNE

precise

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

2.6.36~rc4
vivid

DNE

vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

not-affected

wily

not-affected

Показывать по

РелизСтатусПримечание
dapper

not-affected

devel

DNE

esm-infra-legacy/trusty

DNE

hardy

DNE

jaunty

DNE

karmic

DNE

lucid

DNE

maverick

DNE

natty

DNE

oneiric

DNE

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

hardy

DNE

karmic

DNE

lucid

DNE

maverick

released

2.6.35-903.22
natty

not-affected

2.6.38-1201.2
oneiric

not-affected

2.6.38-1309.13
precise

not-affected

3.0.0-1401.2

Показывать по

Ссылки на источники

2.1 Low

CVSS2

Связанные уязвимости

redhat логотип

CVE-2010-2955

redhat
почти 15 лет назад

The cfg80211_wext_giwessid function in net/wireless/wext-compat.c in the Linux kernel before 2.6.36-rc3-next-20100831 does not properly initialize certain structure members, which allows local users to leverage an off-by-one error in the ioctl_standard_iw_point function in net/wireless/wext-core.c, and obtain potentially sensitive information from kernel heap memory, via vectors involving an SIOCGIWESSID ioctl call that specifies a large buffer size.

nvd логотип

CVE-2010-2955

nvd
почти 15 лет назад

The cfg80211_wext_giwessid function in net/wireless/wext-compat.c in the Linux kernel before 2.6.36-rc3-next-20100831 does not properly initialize certain structure members, which allows local users to leverage an off-by-one error in the ioctl_standard_iw_point function in net/wireless/wext-core.c, and obtain potentially sensitive information from kernel heap memory, via vectors involving an SIOCGIWESSID ioctl call that specifies a large buffer size.

debian логотип

CVE-2010-2955

debian
почти 15 лет назад

The cfg80211_wext_giwessid function in net/wireless/wext-compat.c in t ...

github логотип

GHSA-xj85-gxf6-hq98

github
около 3 лет назад

The cfg80211_wext_giwessid function in net/wireless/wext-compat.c in the Linux kernel before 2.6.36-rc3-next-20100831 does not properly initialize certain structure members, which allows local users to leverage an off-by-one error in the ioctl_standard_iw_point function in net/wireless/wext-core.c, and obtain potentially sensitive information from kernel heap memory, via vectors involving an SIOCGIWESSID ioctl call that specifies a large buffer size.

fstec логотип

BDU:2015-04610

fstec
больше 10 лет назад

Уязвимости операционной системы SUSE Linux Enterprise, позволяющие злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

2.1 Low

CVSS2

Уязвимость CVE-2010-2955