CVE-2010-2803

Linux Kernel < 2.6.27.53 - Information Exposure via DRM IOCTL Memory Allocation

Title source: llm

Description

The drm_ioctl function in drivers/gpu/drm/drm_drv.c in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 2.6.27.53, 2.6.32.x before 2.6.32.21, 2.6.34.x before 2.6.34.6, and 2.6.35.x before 2.6.35.4 allows local users to obtain potentially sensitive information from kernel memory by requesting a large memory-allocation amount.

References (18)

Core 18

Core References

Patch x_refsource_confirm

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b9f0aee83335db1f3915f4e42a5e21b351740afd

Patch x_refsource_confirm

http://git.kernel.org/?p=linux/kernel/git/airlied/drm-2.6.git%3Ba=commit%3Bh=1b2f1489633888d4a06028315dc19d65768a1c05

Patch x_refsource_confirm

http://git.kernel.org/?p=linux/kernel/git/airlied/drm-2.6.git%3Ba=commit%3Bh=b9f0aee83335db1f3915f4e42a5e21b351740afd

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00005.html

Broken Link x_refsource_confirm

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34.6

Broken Link vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDVSA-2010:198

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00004.html

Broken Link x_refsource_confirm

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.53

Broken Link vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2010/2430

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html

Broken Link vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2010-0842.html

Broken Link vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2011/0298

Broken Link x_refsource_confirm

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35.4

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2010/dsa-2094

Exploit, Issue Tracking, Patch, Third Party Advisory x_refsource_confirm

https://bugzilla.redhat.com/show_bug.cgi?id=621435

Mailing List, Third Party Advisory vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00000.html

Broken Link x_refsource_confirm

http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.21

Broken Link third-party-advisory x_refsource_secunia

http://secunia.com/advisories/41512

Scores

EPSS 0.0007

EPSS Percentile 20.8%

Details

CWE

CWE-200

Status published

Products (8)

debian/debian_linux 5.0

linux/linux_kernel < 2.6.27.53

opensuse/opensuse 11.1

opensuse/opensuse 11.3

suse/linux_enterprise_desktop 11 sp1

suse/linux_enterprise_high_availability_extension 11 sp1

suse/linux_enterprise_real_time 11 sp1

suse/linux_enterprise_server 11 sp1

Published Sep 08, 2010

Tracked Since Feb 18, 2026