CVE-2010-4073

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.37-rc1 kernel-kdumppae-debuginfo (affected versions not specified) kernel-devel-2.6.9 kernel-doc-2.6.9 kernel-hugemem-2.6.9 kernel-largesmp-2.6.9 kernel-smp-2.6.9 kernel-smp-devel-2.6.9 kernel-largesmp-devel-2.6.9 kernel-hugemem-devel-2.6.9 kernel-vmipae-debuginfo (affected versions not specified)

Description The issue affects the Linux kernel and can lead to disruption of confidentiality, integrity, and availability of protected information. Exploitation can be done remotely. The ipc subsystem in the Linux kernel before 2.6.37-rc1 does not initialize certain structures, allowing local users to obtain potentially sensitive information from kernel stack memory via vectors related to the (1) compat sys semctl, (2) compat sys msgctl, and (3) compat sys shmctl functions in ipc/compat.c; and the (4) compat sys mq open and (5) compat sys mq getsetattr functions in ipc/compat mq.c.

Recommendations For Linux kernel versions prior to 2.6.37-rc1, update to a version 2.6.37-rc1 or later. For kernel-kdumppae-debuginfo, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For kernel-devel-2.6.9, kernel-doc-2.6.9, kernel-hugemem-2.6.9, kernel-largesmp-2.6.9, kernel-smp-2.6.9, kernel-smp-devel-2.6.9, kernel-largesmp-devel-2.6.9, kernel-hugemem-devel-2.6.9, consider disabling the affected functions until a patch is available. For kernel-vmipae-debuginfo, at the moment, there is no information about a newer version that contains a fix for this vulnerability.