CVE-2010-4081

Name of the Vulnerable Software and Affected Versions SUSE Linux Enterprise (affected versions not specified) Linux kernel versions prior to 2.6.36-rc6

Description The issue concerns multiple vulnerabilities in the Linux kernel, specifically affecting the snd hdspm hwdep ioctl function in sound/pci/rme9652/hdspm.c. These vulnerabilities can be exploited remotely and may lead to unauthorized access to sensitive information. Local users can obtain potentially sensitive information from kernel stack memory via an SNDRV HDSPM IOCTL GET CONFIG INFO ioctl call.

Recommendations For Linux kernel versions prior to 2.6.36-rc6, update to version 2.6.36-rc6 or later to resolve the issue. At the moment, there is no information about a newer version of SUSE Linux Enterprise that contains a fix for this vulnerability.