Back to search
CVE-2010-2954
Published: Sep 3, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
The irda_bind function in net/irda/af_irda.c in the Linux kernel before 2.6.36-rc3-next-20100901 does not properly handle failure of the irda_open_tsap function, which allows local users to cause a denial of service (NULL pointer dereference and panic) and possibly have unspecified other impact via multiple unsuccessful calls to bind on an AF_IRDA (aka PF_IRDA) socket.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
USN-1000-1
vendor-advisory
x_refsource_UBUNTU
SUSE-SA:2010:041
vendor-advisory
x_refsource_SUSE
41234
third-party-advisory
x_refsource_SECUNIA
http://twitter.com/taviso/statuses/22635752128
x_refsource_MISC
kernel-irdabind-dos(61522)
vdb-entry
x_refsource_XF
ADV-2010-2430
vdb-entry
x_refsource_VUPEN
[oss-security] 20100901 CVE-2010-2954 kernel: irda null ptr deref
mailing-list
x_refsource_MLIST
SUSE-SA:2011:007
vendor-advisory
x_refsource_SUSE
[netdev] 20100830 [PATCH] irda: Correctly clean up self->ias_obj on irda_bind() failure.
mailing-list
x_refsource_MLIST
https://bugzilla.redhat.com/show_bug.cgi?id=628770
x_refsource_CONFIRM
ADV-2011-0298
vdb-entry
x_refsource_VUPEN
SUSE-SA:2010:050
vendor-advisory
x_refsource_SUSE
ADV-2010-2266
vdb-entry
x_refsource_VUPEN
SUSE-SA:2010:054
vendor-advisory
x_refsource_SUSE
41512
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now