mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
122 lines
4.7 KiB
JSON
122 lines
4.7 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2010-4074",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "The USB subsystem in the Linux kernel before 2.6.36-rc5 does not properly initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to TIOCGICOUNT ioctl calls, and the (1) mos7720_ioctl function in drivers/usb/serial/mos7720.c and (2) mos7840_ioctl function in drivers/usb/serial/mos7840.c."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=a0846f1868b11cd827bdfeaf4527d8b1b1c0b098",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=a0846f1868b11cd827bdfeaf4527d8b1b1c0b098"
|
|
},
|
|
{
|
|
"name": "[oss-security] 20100925 CVE request: multiple kernel stack memory disclosures",
|
|
"refsource": "MLIST",
|
|
"url": "http://www.openwall.com/lists/oss-security/2010/09/25/2"
|
|
},
|
|
{
|
|
"name": "http://www.kernel.org/pub/linux/kernel/v2.6/testing/v2.6.36/ChangeLog-2.6.36-rc5",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://www.kernel.org/pub/linux/kernel/v2.6/testing/v2.6.36/ChangeLog-2.6.36-rc5"
|
|
},
|
|
{
|
|
"name": "[oss-security] 20101006 Re: CVE request: multiple kernel stack memory disclosures",
|
|
"refsource": "MLIST",
|
|
"url": "http://www.openwall.com/lists/oss-security/2010/10/06/6"
|
|
},
|
|
{
|
|
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=648659",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=648659"
|
|
},
|
|
{
|
|
"name": "RHSA-2011:0007",
|
|
"refsource": "REDHAT",
|
|
"url": "http://www.redhat.com/support/errata/RHSA-2011-0007.html"
|
|
},
|
|
{
|
|
"name": "[linux-kernel] 20100915 [PATCH] drivers/usb/serial/mos*: prevent reading uninitialized stack memory",
|
|
"refsource": "MLIST",
|
|
"url": "http://lkml.org/lkml/2010/9/15/392"
|
|
},
|
|
{
|
|
"name": "RHSA-2010:0958",
|
|
"refsource": "REDHAT",
|
|
"url": "http://www.redhat.com/support/errata/RHSA-2010-0958.html"
|
|
},
|
|
{
|
|
"name": "[oss-security] 20101006 Re: CVE request: multiple kernel stack memory disclosures",
|
|
"refsource": "MLIST",
|
|
"url": "http://www.openwall.com/lists/oss-security/2010/10/07/1"
|
|
},
|
|
{
|
|
"name": "45074",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/45074"
|
|
},
|
|
{
|
|
"name": "42890",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/42890"
|
|
},
|
|
{
|
|
"name": "[oss-security] 20101025 Re: CVE request: multiple kernel stack memory disclosures",
|
|
"refsource": "MLIST",
|
|
"url": "http://www.openwall.com/lists/oss-security/2010/10/25/3"
|
|
},
|
|
{
|
|
"name": "DSA-2126",
|
|
"refsource": "DEBIAN",
|
|
"url": "http://www.debian.org/security/2010/dsa-2126"
|
|
}
|
|
]
|
|
}
|
|
} |