CVE-2010-2962

CVSS v2.0 7.2 (High)

EPSS 0.04 % (11^th)

Affected Products 7

Advisories 25

drivers/gpu/drm/i915/i915_gem.c in the Graphics Execution Manager (GEM) in the Intel i915 driver in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 2.6.36 does not properly validate pointers to blocks of memory, which allows local users to write to arbitrary kernel memory locations, and consequently gain privileges, via crafted use of the ioctl interface, related to (1) pwrite and (2) pread operations.

Weaknesses

CWE-20: Improper Input Validation

CVE Status: PUBLISHED
CNA: Canonical Ltd.
Published Date: 2010-11-26 19:00:06
(14 years ago)
Updated Date: 2023-11-07 02:05:45
(10 months ago)

Affected Products

Suse

Configuration #1

		CPE23	From	Up To
	Linux Kernel prior 2.6.36 version	cpe:2.3:o:linux:linux_kernel		< 2.6.36

Configuration #2

		CPE23	From	Up To
	Fedoraproject Fedora 13	cpe:2.3:o:fedoraproject:fedora:13

Configuration #3

		CPE23	From	Up To
	Opensuse 11.3	cpe:2.3:o:opensuse:opensuse:11.3
	Suse Linux Enterprise Desktop 11 SP1	cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1
	Suse Linux Enterprise Real Time Extension 11 SP1	cpe:2.3:o:suse:linux_enterprise_real_time_extension:11:sp1
	Suse Linux Enterprise Server 11 SP1	cpe:2.3:o:suse:linux_enterprise_server:11:sp1

Configuration #4

		CPE23	From	Up To
	Canonical Ubuntu Linux 9.10	cpe:2.3:o:canonical:ubuntu_linux:9.10
	Canonical Ubuntu Linux 10.04	cpe:2.3:o:canonical:ubuntu_linux:10.04:::*:-
	Canonical Ubuntu Linux 10.10	cpe:2.3:o:canonical:ubuntu_linux:10.10

Weaknesses

Affected Products

Canonical

Fedoraproject

Linux

Opensuse

Suse

Configuration #1

Configuration #2

Configuration #3

Configuration #4