CVE-2010-4158

Published: Dec 30, 2010Modified: Apr 29, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

The sk_run_filter function in net/core/filter.c in the Linux kernel before 2.6.36.2 does not check whether a certain memory location has been initialized before executing a (1) BPF_S_LD_MEM or (2) BPF_S_LDX_MEM instruction, which allows local users to obtain potentially sensitive information from kernel stack memory via a crafted socket filter.

Affected (11)

Products: Linux: Linux Kernel · Fedoraproject: Fedora · Opensuse: Opensuse · +1 more

Show all products

Linux: Linux Kernel · Fedoraproject: Fedora · Opensuse: Opensuse · Suse: Linux Enterprise Desktop, Linux Enterprise Real Time Extension, Linux Enterprise Server, Linux Enterprise Software Development Kit

1 product

1 product

1 product

4 products

Linux Enterprise Desktop

Linux Enterprise Real Time Extension

Linux Enterprise Server

Linux Enterprise Software Development Kit

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Before 2.6.36.2

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 13

Configuration C

9 vulnerable

Vulnerable Software	Affected Versions
Opensuse Opensuse	Version 11.2
Opensuse Opensuse	Version 11.3
Suse Linux Enterprise Desktop	Version 10 sp3
Suse Linux Enterprise Desktop	Version 11 sp1
Suse Linux Enterprise Real Time Extension	Version 11 sp1
Suse Linux Enterprise Server	Version 10 sp3
Suse Linux Enterprise Server	Version 11 sp1
Suse Linux Enterprise Server	Version 9
Suse Linux Enterprise Software Development Kit	Version 10 sp3

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (74)

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=57fe93b374a6b8711995c2d466c502af9f3a08bb

Source: secalert@redhat.com

http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052513.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.grok.org.uk/pipermail/full-disclosure/2010-November/077321.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00004.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00002.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://secunia.com/advisories/42745

Source: secalert@redhat.com

Third Party Advisory

http://secunia.com/advisories/42778

Source: secalert@redhat.com

Third Party Advisory

http://secunia.com/advisories/42801

Source: secalert@redhat.com

Third Party Advisory

http://secunia.com/advisories/42884

Source: secalert@redhat.com

Third Party Advisory

http://secunia.com/advisories/42890

Source: secalert@redhat.com

Third Party Advisory

http://secunia.com/advisories/42932

Source: secalert@redhat.com

Third Party Advisory

http://secunia.com/advisories/42963

Source: secalert@redhat.com

Third Party Advisory

http://secunia.com/advisories/43291

Source: secalert@redhat.com

Third Party Advisory

http://secunia.com/advisories/46397

Source: secalert@redhat.com

Third Party Advisory

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36.2

Source: secalert@redhat.com

Broken Link

http://www.mandriva.com/security/advisories?name=MDVSA-2011:029

Source: secalert@redhat.com

Third Party Advisory

http://www.redhat.com/support/errata/RHSA-2010-0958.html

Source: secalert@redhat.com

Third Party Advisory

http://www.redhat.com/support/errata/RHSA-2011-0007.html

Source: secalert@redhat.com

Third Party Advisory

http://www.redhat.com/support/errata/RHSA-2011-0017.html

Source: secalert@redhat.com

Third Party Advisory

http://www.redhat.com/support/errata/RHSA-2011-0162.html

Source: secalert@redhat.com

Third Party Advisory

http://www.securityfocus.com/archive/1/514705

Source: secalert@redhat.com

ExploitThird Party AdvisoryVDB Entry

http://www.securityfocus.com/archive/1/514845

Source: secalert@redhat.com

ExploitThird Party AdvisoryVDB Entry

http://www.securityfocus.com/archive/1/520102/100/0/threaded

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/44758

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

http://www.spinics.net/lists/netdev/msg146361.html

Source: secalert@redhat.com

Mailing ListPatchThird Party Advisory

http://www.vmware.com/security/advisories/VMSA-2011-0012.html

Source: secalert@redhat.com

Third Party Advisory

http://www.vupen.com/english/advisories/2010/3321

Source: secalert@redhat.com

Third Party Advisory

http://www.vupen.com/english/advisories/2011/0012

Source: secalert@redhat.com

Third Party Advisory

http://www.vupen.com/english/advisories/2011/0124

Source: secalert@redhat.com

Third Party Advisory

http://www.vupen.com/english/advisories/2011/0168

Source: secalert@redhat.com

Third Party Advisory

http://www.vupen.com/english/advisories/2011/0298

Source: secalert@redhat.com

Third Party Advisory

http://www.vupen.com/english/advisories/2011/0375

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=651698

Source: secalert@redhat.com

Issue TrackingPatchThird Party Advisory

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=57fe93b374a6b8711995c2d466c502af9f3a08bb