Vulnerability Description
A vulnerability exists in kernel/time/clocksource.c in the Linux kernel before 2.6.34 where on non-GENERIC_TIME systems (GENERIC_TIME=n), accessing /sys/devices/system/clocksource/clocksource0/current_clocksource results in an OOPS.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | < 2.6.33 |
Related Weaknesses (CWE)
References
- https://access.redhat.com/security/cve/cve-2010-2243Third Party Advisory
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=adMailing ListPatchVendor Advisory
- https://security-tracker.debian.org/tracker/CVE-2010-2243Third Party Advisory
- https://www.openwall.com/lists/oss-security/2010/06/25/1Mailing ListPatchThird Party Advisory
- https://access.redhat.com/security/cve/cve-2010-2243Third Party Advisory
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=adMailing ListPatchVendor Advisory
- https://security-tracker.debian.org/tracker/CVE-2010-2243Third Party Advisory
- https://www.openwall.com/lists/oss-security/2010/06/25/1Mailing ListPatchThird Party Advisory
FAQ
What is CVE-2010-2243?
CVE-2010-2243 is a vulnerability with a CVSS score of 7.5 (HIGH). A vulnerability exists in kernel/time/clocksource.c in the Linux kernel before 2.6.34 where on non-GENERIC_TIME systems (GENERIC_TIME=n), accessing /sys/devices/system/clocksource/clocksource0/current...
How severe is CVE-2010-2243?
CVE-2010-2243 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-2243?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.