PT-2009-5260 · Linux+1 · Linux Kernel+1

Josh Bressers

Published

2009-10-20

Updated

2023-02-13

CVE-2009-2910

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.31.4

Description: The issue allows local users to read register values from an earlier process by switching an ia32 process to 64-bit mode, due to the Linux kernel not clearing certain kernel registers before a return to user mode on the x86 64 platform.

Recommendations: For versions prior to 2.6.31.4, update to version 2.6.31.4 or later to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2009-2910

DSA-1915-1

DSA-1928-1

RHSA-2009:1540

RHSA-2009:1671

RHSA-2009_1671

RHSA-2010:0046

RHSA-2010_0046

Affected Products

Linux Kernel

Red Hat

PT-2009-5260 · Linux+1 · Linux Kernel+1

CVE-2009-2910

Weakness Enumeration

Related Identifiers

Affected Products

References · 63