CVE-2010-3437
CVSS v2.0
6.6 (Medium)
EPSS
0.04 % (0th)
Affected Products
8
Advisories
10
Integer signedness error in the pkt_find_dev_from_minor function in drivers/block/pktcdvd.c in the Linux kernel before 2.6.36-rc6 allows local users to obtain sensitive information from kernel memory or cause a denial of service (invalid pointer dereference and system crash) via a crafted index value in a PKT_CTRL_CMD_STATUS ioctl call.
Weaknesses
- CWE-476
- NULL Pointer Dereference
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2010-10-04 21:00:04
(14 years ago) - Updated Date
-
2023-02-13 04:24:34
(19 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Configuration #4
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...