Your submission was sent successfully! Close

CVE-2010-0415

Published: 17 February 2010

The do_pages_move function in mm/migrate.c in the Linux kernel before 2.6.33-rc7 does not validate node values, which allows local users to read arbitrary kernel memory locations, cause a denial of service (OOPS), and possibly have unspecified other impact by specifying a node that is not part of the kernel's node set.

Notes

AuthorNote
kees
Introduced in 2.6.18.
Priority

Medium

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy
Released (2.6.24-27.68)
intrepid
Released (2.6.27-17.46)
jaunty
Released (2.6.28-18.60)
karmic
Released (2.6.31-20.58)
upstream
Released (2.6.33~rc7)
Patches:
upstream: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=6f5a55f1a6c5abee15a0e878e5c74d9f1569b8b0
linux-source-2.6.15
Launchpad, Ubuntu, Debian
dapper Not vulnerable

hardy Does not exist

intrepid Does not exist

jaunty Does not exist

karmic Does not exist

upstream
Released (2.6.33~rc7)