CVE-2009-2910

Linux Kernel < 2.6.31.4 - Information Disclosure

Title source: rule

Description

arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not clear certain kernel registers before a return to user mode, which allows local users to read register values from an earlier process by switching an ia32 process to 64-bit mode.

References (24)

... and 4 more

Scores

EPSS 0.0005
EPSS Percentile 15.9%

Classification

CWE
CWE-200
Status draft

Affected Products (18)

linux/linux_kernel < 2.6.31.4
suse/linux_enterprise_debuginfo
opensuse/opensuse
suse/linux_enterprise_desktop
suse/linux_enterprise_server
suse/linux_enterprise_server
suse/linux_enterprise_software_development_kit
canonical/ubuntu_linux
canonical/ubuntu_linux
canonical/ubuntu_linux
canonical/ubuntu_linux
canonical/ubuntu_linux
redhat/virtualization
redhat/enterprise_linux_desktop
redhat/enterprise_linux_eus
... and 3 more

Timeline

Published Oct 20, 2009
Tracked Since Feb 18, 2026