CVE-2010-3080

Name of the Vulnerable Software and Affected Versions drbd-kmp-default versions (affected versions not specified) Linux kernel versions prior to 2.6.36-rc4

Description The issue concerns multiple vulnerabilities in the drbd-kmp-default package of the openSUSE operating system, which can be exploited locally to compromise the confidentiality, integrity, and availability of protected information. Additionally, a double free vulnerability exists in the snd seq oss open function of the Linux kernel, potentially allowing local users to cause a denial of service or have other unspecified impacts by attempting to open the /dev/sequencer device.

Recommendations For drbd-kmp-default, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Linux kernel versions prior to 2.6.36-rc4, update to version 2.6.36-rc4 or later to resolve the issue. As a temporary workaround, consider restricting access to the /dev/sequencer device to minimize the risk of exploitation.