CVE-2010-2942

Published Sep 21, 2010

Last updated 3 months ago

CVSS medium 5.5

Overview

Description: The actions implementation in the network queueing functionality in the Linux kernel before 2.6.36-rc2 does not properly initialize certain structure members when performing dump operations, which allows local users to obtain potentially sensitive information from kernel memory via vectors related to (1) the tcf_gact_dump function in net/sched/act_gact.c, (2) the tcf_mirred_dump function in net/sched/act_mirred.c, (3) the tcf_nat_dump function in net/sched/act_nat.c, (4) the tcf_simp_dump function in net/sched/act_simple.c, and (5) the tcf_skbedit_dump function in net/sched/act_skbedit.c.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 5.5
Impact score: 3.6
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-401

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2C162EC4-E7AD-47B4-B974-EF9F9468E80F",
            "versionEndIncluding": "2.6.35.13"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.36:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4407EF9-4ECF-408F-9ECB-0705E3FB65D5"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:2.6.36:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DBE26099-6D2C-4FAF-B15C-CBF985D59171"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "454A5D17-B171-4F1F-9E0B-F18D1E5CA9FD"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0507E91-567A-41D6-A7E5-5088A39F75FB"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A5D026D0-EF78-438D-BEDD-FC8571F3ACEB"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2BCB73E-27BB-4878-AD9C-90C4F20C25A0"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01EDA41C-6B2E-49AF-B503-EB3882265C11"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "87614B58-24AB-49FB-9C84-E8DDBA16353B"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:opensuse:opensuse:11.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FBF7B6A8-3DF9-46EC-A90E-6EF68C39F883"
          },
          {
            "criteria": "cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5646FDE9-CF21-46A9-B89D-F5BBDB4249AF"
          },
          {
            "criteria": "cpe:2.3:o:suse:suse_linux_enterprise_desktop:10:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F140C5CF-5141-4F8D-B667-522A698AC632"
          },
          {
            "criteria": "cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "17C0CB9A-F8FA-423D-9D0E-64DC6525CD4D"
          },
          {
            "criteria": "cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10A193CD-12B9-4236-8A2C-E8CEAE592952"
          },
          {
            "criteria": "cpe:2.3:o:suse:suse_linux_enterprise_server:10:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A516C153-239B-4F41-88B4-8B8D4F92115C"
          },
          {
            "criteria": "cpe:2.3:o:suse:suse_linux_enterprise_server:11:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE5FEEB4-95BC-47AF-A6EA-FEF4C2AF1A2C"
          },
          {
            "criteria": "cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F691F4E7-2FF1-4EFB-B21F-E510049A9940"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:avaya:aura_communication_manager:5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B6567360-D041-4C5A-A9DF-39223E5FF895"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_presence_services:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "47508B6A-134F-4795-A5D1-4256D38BCE57"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_presence_services:6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "876BFAD3-DF3C-419D-89AD-160BC15F2B09"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_presence_services:6.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C308358C-A051-4E86-8621-EC7DEC866C1B"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_session_manager:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C5F5625-1601-4EFC-B710-58B145F10708"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_session_manager:5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB6AB5D8-6E22-483E-A91E-0880FF9A2C97"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_session_manager:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D17B8A88-2355-409B-BF79-8BE78BCBC66A"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_manager:5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44D546F5-2751-41F0-9442-8F1EB904E294"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_manager:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E7C82ABC-54B9-454C-A9F9-2DBFF1D62364"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_manager:6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA1A137E-0BA3-4E17-AC1F-AEB92C205B78"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_manager:6.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C7E6391-D86C-45AF-962C-7162FC8B706C"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_platform:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76E0FA7D-9F1B-4B1D-8B2D-85D2ED6DC00C"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_platform:6.0:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7F1DDA6-7664-41AA-8364-8BEF7834531E"
          },
          {
            "criteria": "cpe:2.3:a:avaya:aura_system_platform:6.0:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC1A931C-EEB1-4630-A1F5-C0B5166724A1"
          },
          {
            "criteria": "cpe:2.3:a:avaya:iq:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C850D33E-6E6A-4AAC-96B9-8510C902E38A"
          },
          {
            "criteria": "cpe:2.3:a:avaya:iq:5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "75A6A088-DE78-406D-AC52-66159B8A9869"
          },
          {
            "criteria": "cpe:2.3:a:avaya:voice_portal:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5795B04-82E1-4289-BC45-02AEFA0C28F8"
          },
          {
            "criteria": "cpe:2.3:a:avaya:voice_portal:5.1:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F2CA6D2-CED8-4A72-8D34-2A9310AA724D"
          },
          {
            "criteria": "cpe:2.3:a:avaya:voice_portal:5.1:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5DAAEB2D-7C42-4610-B9DD-810788C979C0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:vmware:esx:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BC337BB7-9A45-4406-A783-851F279130EE"
          },
          {
            "criteria": "cpe:2.3:o:vmware:esx:4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B6BA46F-4E8C-4B2A-AE92-81B9F1B4D56C"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References