PT-2010-4438 · Linux · Linux Kernel

Kees Cook

Published

2010-11-26

Updated

2020-08-14

CVE-2010-2963

CVSS v2.0

6.2

Medium

Vector

AV:L/AC:H/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.36

Description The issue concerns a memory copy operation in the Video4Linux (V4L) implementation that does not validate the destination, allowing local users to write to arbitrary kernel memory locations and gain privileges. This can be achieved via a VIDIOCSTUNER ioctl call on a /dev/video device, followed by a VIDIOCSMICROCODE ioctl call on this device.

Recommendations For Linux kernel versions prior to 2.6.36, update to version 2.6.36 or later to resolve the issue.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2010-2963

DSA-2126-1

Affected Products

Linux Kernel

PT-2010-4438 · Linux · Linux Kernel

CVE-2010-2963

Weakness Enumeration

Related Identifiers

Affected Products

References · 16