QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2010-2955

Back to search

CVE-2010-2955

Published: Sep 8, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

The cfg80211_wext_giwessid function in net/wireless/wext-compat.c in the Linux kernel before 2.6.36-rc3-next-20100831 does not properly initialize certain structure members, which allows local users to leverage an off-by-one error in the ioctl_standard_iw_point function in net/wireless/wext-core.c, and obtain potentially sensitive information from kernel heap memory, via vectors involving an SIOCGIWESSID ioctl call that specifies a large buffer size.

VendorProductVersions

n/a

n/a

affected
n/a

References

USN-1000-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2010:0771
vendor-advisory
x_refsource_REDHAT
42885
vdb-entry
x_refsource_BID
SUSE-SA:2011:007
vendor-advisory
x_refsource_SUSE
RHSA-2010:0842
vendor-advisory
x_refsource_REDHAT
ADV-2011-0298
vdb-entry
x_refsource_VUPEN
41245
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2010:054
vendor-advisory
x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now