4.9

CVE-2010-0623

The futex_lock_pi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly manage a certain reference count, which allows local users to cause a denial of service (OOPS) via vectors involving an unmount of an ext3 filesystem.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 2.6.33
LinuxLinux Kernel Version2.6.33 Update-
LinuxLinux Kernel Version2.6.33 Updaterc1
LinuxLinux Kernel Version2.6.33 Updaterc2
LinuxLinux Kernel Version2.6.33 Updaterc3
LinuxLinux Kernel Version2.6.33 Updaterc4
LinuxLinux Kernel Version2.6.33 Updaterc5
LinuxLinux Kernel Version2.6.33 Updaterc6
OpensuseOpensuse Version11.2
CanonicalUbuntu Linux Version6.06
CanonicalUbuntu Linux Version8.04 SwEdition-
CanonicalUbuntu Linux Version8.10
CanonicalUbuntu Linux Version9.04
CanonicalUbuntu Linux Version9.10
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.4% 0.321
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.9 3.9 6.9
AV:L/AC:L/Au:N/C:N/I:N/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.mandriva.com/security/advisories?name=MDVSA-2010:088
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00006.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/38922
Third Party Advisory
http://www.ubuntu.com/usn/USN-914-1
Third Party Advisory
http://www.vupen.com/english/advisories/2010/0638
Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.33-rc7
Broken Link
http://www.openwall.com/lists/oss-security/2010/02/11/2
Third Party Advisory
Mailing List
http://bugzilla.kernel.org/show_bug.cgi?id=14256
Patch
Vendor Advisory
Issue Tracking
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=5ecb01cfdf96c5f465192bdb2a4fd4a61a24c6cc