CVE-2010-1446

Sažetak

arch/powerpc/mm/fsl_booke_mmu.c in KGDB in the Linux kernel 2.6.30 and other versions before 2.6.33, when running on PowerPC, does not properly perform a security check for access to a kernel page, which allows local users to overwrite arbitrary kernel memory, related to Fsl booke.

Reference

http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00006.html
http://lkml.org/lkml/2010/5/10/458
http://secunia.com/advisories/39830
http://secunia.com/advisories/40645
http://www.debian.org/security/2010/dsa-2053
http://www.openwall.com/lists/oss-security/2010/04/29/3
http://www.openwall.com/lists/oss-security/2010/04/29/9
http://www.openwall.com/lists/oss-security/2010/04/30/1
http://www.vupen.com/english/advisories/2010/1857
https://exchange.xforce.ibmcloud.com/vulnerabilities/58840

CVSS

Base:	1.9
Impact:	2.9
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:L/AC:M/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

17-08-2017 - 01:32

Objavljeno

21-05-2010 - 17:30