CVE-2010-4072 — LOW (1.9) — White Hats Nepal

Q: How severe is CVE-2010-4072?

CVE-2010-4072 has been rated LOW with a CVSS base score of 1.9/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2010-4072?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Opensuse Opensuse, Suse Linux Enterprise Desktop, Suse Linux Enterprise Real Time Extension, Suse Linux Enterprise Server.

Vulnerability Description

The copy_shmid_to_user function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the shmctl system call and the "old shm interface."

CVSS Score

1.9

LOW

AV:L/AC:M/Au:N/C:P/I:N/A:N

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	< 2.6.37
Opensuse	Opensuse	11.3
Suse	Linux Enterprise Desktop	10
Suse	Linux Enterprise Real Time Extension	11
Suse	Linux Enterprise Server	9
Suse	Linux Enterprise Software Development Kit	10
Debian	Debian Linux	5.0
Canonical	Ubuntu Linux	6.06

Related Weaknesses (CWE)

CWE-200

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00004.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00002.htmlMailing ListThird Party Advisory
http://lkml.org/lkml/2010/10/6/454PatchThird Party Advisory
http://secunia.com/advisories/42758Third Party Advisory
http://secunia.com/advisories/42778Third Party Advisory
http://secunia.com/advisories/42884Third Party Advisory
http://secunia.com/advisories/42890Third Party Advisory
http://secunia.com/advisories/42932Third Party Advisory
http://secunia.com/advisories/42963Third Party Advisory
http://secunia.com/advisories/43161Third Party Advisory
http://secunia.com/advisories/43291Third Party Advisory

FAQ

What is CVE-2010-4072?

CVE-2010-4072 is a vulnerability with a CVSS score of 1.9 (LOW). The copy_shmid_to_user function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from ke...

How severe is CVE-2010-4072?

CVE-2010-4072 has been rated LOW with a CVSS base score of 1.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2010-4072?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Opensuse Opensuse, Suse Linux Enterprise Desktop, Suse Linux Enterprise Real Time Extension, Suse Linux Enterprise Server.