Back to search
CVE-2010-4346
Published: Dec 22, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
The install_special_mapping function in mm/mmap.c in the Linux kernel before 2.6.37-rc6 does not make an expected security_file_mmap function call, which allows local users to bypass intended mmap_min_addr restrictions and possibly conduct NULL pointer dereference attacks via a crafted assembly-language application.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console
mailing-list
x_refsource_BUGTRAQ
https://bugzilla.redhat.com/show_bug.cgi?id=662189
x_refsource_CONFIRM
46397
third-party-advisory
x_refsource_SECUNIA
[oss-security] 20101209 Re: [[email protected]: [PATCH] install_special_mapping skips security_file_mmap check.]
mailing-list
x_refsource_MLIST
[linux-kernel] 20101209 [PATCH] install_special_mapping skips security_file_mmap check.
mailing-list
x_refsource_MLIST
[oss-security] 20101210 Re: Subject: CVE request: kernel: install_special_mapping skips security_file_mmap check
mailing-list
x_refsource_MLIST
http://www.vmware.com/security/advisories/VMSA-2011-0012.html
x_refsource_CONFIRM
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.37-rc6
x_refsource_CONFIRM
MDVSA-2011:029
vendor-advisory
x_refsource_MANDRIVA
45323
vdb-entry
x_refsource_BID
[oss-security] 20101210 Subject: CVE request: kernel: install_special_mapping skips security_file_mmap check
mailing-list
x_refsource_MLIST
[oss-security] 20101209 [[email protected]: [PATCH] install_special_mapping skips security_file_mmap check.]
mailing-list
x_refsource_MLIST
42570
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now