← Back

CVE-2010-2963

nvd nist
Published: Nov 26, 2010Modified: Apr 29, 2026

JSON object

Loading...
6.2
Vector
AV:L/AC:H/Au:N/C:C/I:C/A:C
Exploitability: 1.9 / Impact: 10.0
Source: NVD

Description

drivers/media/video/v4l2-compat-ioctl32.c in the Video4Linux (V4L) implementation in the Linux kernel before 2.6.36 on 64-bit platforms does not validate the destination of a memory copy operation, which allows local users to write to arbitrary kernel memory locations, and consequently gain privileges, via a VIDIOCSTUNER ioctl call on a /dev/video device, followed by a VIDIOCSMICROCODE ioctl call on this device.

Affected (13)

Products: Linux: Linux Kernel · Fedoraproject: Fedora · Opensuse: Opensuse · +3 more
Show all products
Linux: Linux Kernel · Fedoraproject: Fedora · Opensuse: Opensuse · Suse: Linux Enterprise Desktop, Linux Enterprise Server · Debian: Debian Linux · Canonical: Ubuntu Linux
Linux
1 product
Linux Kernel
Fedoraproject
1 product
Fedora
Opensuse
1 product
Opensuse
Suse
2 products
Linux Enterprise Desktop
Linux Enterprise Server
Debian
1 product
Debian Linux
Canonical
1 product
Ubuntu Linux
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Linux Kernel
Before 2.6.36
Configuration B
1 vulnerable
Vulnerable SoftwareAffected Versions
Fedora
Version 13
Configuration C
4 vulnerable
Vulnerable SoftwareAffected Versions
Opensuse
Opensuse
Version 11.2
Opensuse
Version 11.3
Linux Enterprise Desktop
Version 11 sp1
Linux Enterprise Server
Version 11 sp1
Configuration D
1 vulnerable
Vulnerable SoftwareAffected Versions
Debian Linux
Version 5.0
Configuration E
6 vulnerable
Vulnerable SoftwareAffected Versions
Canonical
Ubuntu Linux
Version 10.04
Ubuntu Linux
Version 10.10
Ubuntu Linux
Version 6.06
Ubuntu Linux
Version 8.04
Ubuntu Linux
Version 9.04
Ubuntu Linux
Version 9.10

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (28)

Source: security@ubuntu.com
Source: security@ubuntu.com
Third Party Advisory
Source: security@ubuntu.com
Mailing ListThird Party Advisory
Source: security@ubuntu.com
Mailing ListThird Party Advisory
Source: security@ubuntu.com
Third Party Advisory
Source: security@ubuntu.com
Third Party Advisory
Source: security@ubuntu.com
Broken Link
Source: security@ubuntu.com
Third Party Advisory
Source: security@ubuntu.com
ExploitThird Party Advisory
Source: security@ubuntu.com
Third Party AdvisoryVDB Entry
Source: security@ubuntu.com
Third Party AdvisoryVDB Entry
Source: security@ubuntu.com
Third Party Advisory
Source: security@ubuntu.com
Third Party Advisory
Source: security@ubuntu.com
ExploitIssue TrackingPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitIssue TrackingPatchThird Party Advisory

Timeline

No history available yet.