CVE-2010-2803

CVSS v2.0 1.9 (Low)

EPSS 0.04 % (13^th)

Affected Products 7

Advisories 5

The drm_ioctl function in drivers/gpu/drm/drm_drv.c in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 2.6.27.53, 2.6.32.x before 2.6.32.21, 2.6.34.x before 2.6.34.6, and 2.6.35.x before 2.6.35.4 allows local users to obtain potentially sensitive information from kernel memory by requesting a large memory-allocation amount.

Weaknesses

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

Related CVEs

CVE-2010-3016

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2010-09-08 20:00:02
(14 years ago)
Updated Date: 2023-02-13 03:18:51
(19 months ago)

Affected Products

Suse

Configuration #1

	CPE23	From	Up To
Linux Kernel prior 2.6.27.53 version	cpe:2.3:o:linux:linux_kernel		< 2.6.27.53
Linux Kernel from 2.6.32 version and prior 2.6.32.21 version	cpe:2.3:o:linux:linux_kernel	>= 2.6.32	< 2.6.32.21
Linux Kernel from 2.6.34 version and prior 2.6.34.6 version	cpe:2.3:o:linux:linux_kernel	>= 2.6.34	< 2.6.34.6
Linux Kernel from 2.6.35 version and prior 2.6.35.4 version	cpe:2.3:o:linux:linux_kernel	>= 2.6.35	< 2.6.35.4

Configuration #2

		CPE23	From	Up To
	Debian Linux 5.0	cpe:2.3:o:debian:debian_linux:5.0

Configuration #3

		CPE23	From	Up To
	Opensuse 11.1	cpe:2.3:o:opensuse:opensuse:11.1
	Opensuse 11.3	cpe:2.3:o:opensuse:opensuse:11.3
	Suse Linux Enterprise Desktop 11 SP1	cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1
	Suse Linux Enterprise High Availability Extension 11 SP1	cpe:2.3:o:suse:linux_enterprise_high_availability_extension:11:sp1
	Suse Linux Enterprise Real Time 11 SP1	cpe:2.3:o:suse:linux_enterprise_real_time:11:sp1
	Suse Linux Enterprise Server 11 SP1	cpe:2.3:o:suse:linux_enterprise_server:11:sp1

Weaknesses

Related CVEs

Affected Products

Debian

Linux

Opensuse

Suse

Configuration #1

Configuration #2

Configuration #3