Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2010-3081
Description:The compat_alloc_user_space functions in include/asm/compat.h files in the Linux kernel before 2.6.36-rc4-git2 on 64-bit platforms do not properly allocate the userspace memory required for the 32-bit compatibility layer, which allows local users to gain privileges by leveraging the ability of the compat_mc_getsockopt function (aka the MCAST_MSFILTER getsockopt support) to control a certain length value, related to a "stack pointer underflow" issue, as exploited in the wild in September 2010.
Test IDs: 1.3.6.1.4.1.25623.1.0.68062   1.3.6.1.4.1.25623.1.0.68023   1.3.6.1.4.1.25623.1.0.68024   1.3.6.1.4.1.25623.1.0.68022   1.3.6.1.4.1.25623.1.0.68155   1.3.6.1.4.1.25623.1.0.68091   1.3.6.1.4.1.25623.1.0.68115   1.3.6.1.4.1.25623.1.0.68064   1.3.6.1.4.1.25623.1.0.68066   1.3.6.1.4.1.25623.1.0.68313   1.3.6.1.4.1.25623.1.0.68020   1.3.6.1.4.1.25623.1.0.69154   1.3.6.1.4.1.25623.1.0.71928   1.3.6.1.4.1.25623.1.0.71873   1.3.6.1.4.1.25623.1.0.122317   1.3.6.1.4.1.25623.1.0.880582  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2010-3081
Bugtraq: 20101130 VMSA-2010-0017 VMware ESX third party update for Service Console kerne (Google Search)
http://www.securityfocus.com/archive/1/514938/30/30/threaded
Bugtraq: 20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX (Google Search)
http://www.securityfocus.com/archive/1/516397/100/0/threaded
http://archives.neohapsis.com/archives/fulldisclosure/2010-09/0273.html
http://archives.neohapsis.com/archives/fulldisclosure/2010-09/0278.html
http://www.mandriva.com/security/advisories?name=MDVSA-2010:198
http://www.mandriva.com/security/advisories?name=MDVSA-2010:214
http://www.mandriva.com/security/advisories?name=MDVSA-2010:247
http://blog.ksplice.com/2010/09/cve-2010-3081/
http://isc.sans.edu/diary.html?storyid=9574
http://sota.gen.nz/compat1/
http://marc.info/?l=oss-security&m=128461522230211&w=2
RedHat Security Advisories: RHSA-2010:0758
http://www.redhat.com/support/errata/RHSA-2010-0758.html
RedHat Security Advisories: RHSA-2010:0842
http://www.redhat.com/support/errata/RHSA-2010-0842.html
RedHat Security Advisories: RHSA-2010:0882
http://www.redhat.com/support/errata/RHSA-2010-0882.html
http://secunia.com/advisories/42384
http://secunia.com/advisories/43315
SuSE Security Announcement: SUSE-SA:2010:050 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00003.html
SuSE Security Announcement: SUSE-SA:2011:007 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html
SuSE Security Announcement: SUSE-SR:2010:017 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html
http://www.vupen.com/english/advisories/2010/3083
http://www.vupen.com/english/advisories/2010/3117
http://www.vupen.com/english/advisories/2011/0298




© 1998-2021 E-Soft Inc. All rights reserved.