2.1

CVE-2009-2910

arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not clear certain kernel registers before a return to user mode, which allows local users to read register values from an earlier process by switching an ia32 process to 64-bit mode.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 2.6.31.4
SuseLinux Enterprise Debuginfo Version10 Updatesp2
OpensuseOpensuse Version11.0
SuseLinux Enterprise Desktop Version10 Updatesp2
SuseLinux Enterprise Server Version10 Updatesp2
CanonicalUbuntu Linux Version6.06
CanonicalUbuntu Linux Version8.04 SwEdition-
CanonicalUbuntu Linux Version8.10
CanonicalUbuntu Linux Version9.04
CanonicalUbuntu Linux Version9.10
RedhatVirtualization Version5
RedhatEnterprise Linux Eus Version5.4
FedoraprojectFedora Version10
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.41% 0.329
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://support.avaya.com/css/P8/documents/100073666
Third Party Advisory
https://rhn.redhat.com/errata/RHSA-2010-0046.html
Third Party Advisory
https://rhn.redhat.com/errata/RHSA-2010-0095.html
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00005.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00007.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/37351
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html
Third Party Advisory
Mailing List
https://rhn.redhat.com/errata/RHSA-2009-1540.html
Third Party Advisory
http://secunia.com/advisories/37075
Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00483.html
Third Party Advisory
http://www.ubuntu.com/usn/usn-864-1
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2009-1671.html
Third Party Advisory
http://git.kernel.org/?p=linux/kernel/git/x86/linux-2.6-tip.git%3Ba=commit%3Bh=24e35800cdc4350fc34e2bed37b608a9e13ab3b6
http://lkml.org/lkml/2009/10/1/164
Patch
Third Party Advisory
http://marc.info/?l=oss-security&m=125442304214452&w=2
Third Party Advisory
http://marc.info/?l=oss-security&m=125444390112831&w=2
Third Party Advisory
http://marc.info/?l=oss-security&m=125511635004768&w=2
Third Party Advisory
http://secunia.com/advisories/36927
Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.31.4
Broken Link
http://www.openwall.com/lists/oss-security/2009/10/02/1
Third Party Advisory
Mailing List
http://www.securityfocus.com/bid/36576
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=526788
Patch
Third Party Advisory
Issue Tracking
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10823
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7359
Third Party Advisory