CVE-2010-0453: Input Validation
First published: Wed Feb 03 2010(Updated: )
The ucode_ioctl function in intel/io/ucode_drv.c in Sun Solaris 10 and OpenSolaris snv_69 through snv_133, when running on x86 architectures, allows local users to cause a denial of service (panic) via a request with a 0 size value to the UCODE_GET_VERSION IOCTL, which triggers a NULL pointer dereference in the ucode_get_rev function, related to retrieval of the microcode revision.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sun OpenSolaris | =snv_127 | |
| Sun OpenSolaris | =snv_70 | |
| Sun OpenSolaris | =snv_114 | |
| Sun OpenSolaris | =snv_90 | |
| Sun OpenSolaris | =snv_93 | |
| Sun OpenSolaris | =snv_110 | |
| Sun OpenSolaris | =snv_85 | |
| Sun OpenSolaris | =snv_116 | |
| Sun OpenSolaris | =snv_120 | |
| Sun OpenSolaris | =snv_72 | |
| Sun OpenSolaris | =snv_117 | |
| Sun OpenSolaris | =snv_87 | |
| Sun OpenSolaris | =snv_123 | |
| Sun OpenSolaris | =snv_92 | |
| Sun OpenSolaris | =snv_131 | |
| Sun OpenSolaris | =snv_77 | |
| Sun OpenSolaris | =snv_126 | |
| Sun OpenSolaris | =snv_80 | |
| Sun OpenSolaris | =snv_130 | |
| Sun OpenSolaris | =snv_119 | |
| Sun OpenSolaris | =snv_103 | |
| Sun OpenSolaris | =snv_84 | |
| Sun OpenSolaris | =snv_121 | |
| Sun OpenSolaris | =snv_106 | |
| Sun OpenSolaris | =snv_86 | |
| Sun OpenSolaris | =snv_100 | |
| Sun OpenSolaris | =snv_112 | |
| Sun OpenSolaris | =snv_89 | |
| Sun OpenSolaris | =snv_124 | |
| Sun OpenSolaris | =snv_129 | |
| Sun OpenSolaris | =snv_78 | |
| Sun OpenSolaris | =snv_96 | |
| Sun OpenSolaris | =snv_132 | |
| Sun OpenSolaris | =snv_99 | |
| Sun OpenSolaris | =snv_107 | |
| Sun OpenSolaris | =snv_79 | |
| Sun OpenSolaris | =snv_122 | |
| Sun OpenSolaris | =snv_115 | |
| Sun OpenSolaris | =snv_69 | |
| Sun OpenSolaris | =snv_98 | |
| Sun OpenSolaris | =snv_109 | |
| Sun OpenSolaris | =snv_113 | |
| Sun OpenSolaris | =snv_71 | |
| Sun OpenSolaris | =snv_82 | |
| Sun OpenSolaris | =snv_102 | |
| Sun OpenSolaris | =snv_105 | |
| Sun OpenSolaris | =snv_108 | |
| Sun OpenSolaris | =snv_75 | |
| Sun OpenSolaris | =snv_81 | |
| Sun OpenSolaris | =snv_128 | |
| Sun OpenSolaris | =snv_95 | |
| Sun OpenSolaris | =snv_133 | |
| Sun OpenSolaris | =snv_88 | |
| Sun OpenSolaris | =snv_73 | |
| Sun OpenSolaris | =snv_104 | |
| Sun OpenSolaris | =snv_94 | |
| Sun OpenSolaris | =snv_101 | |
| Sun OpenSolaris | =snv_83 | |
| Sun OpenSolaris | =snv_97 | |
| Sun OpenSolaris | =snv_125 | |
| Sun OpenSolaris | =snv_74 | |
| Sun OpenSolaris | =snv_111 | |
| Sun OpenSolaris | =snv_91 | |
| Sun OpenSolaris | =snv_76 | |
| Sun OpenSolaris | =snv_118 | |
| Sun Solaris | =10.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://osvdb.org/62046
- http://www.vupen.com/english/advisories/2010/0270
- http://www.securityfocus.com/bid/38016
- http://secunia.com/advisories/38452
- http://www.trapkit.de/advisories/TKADV2010-001.txt
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-143913-01-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-275910-1
- http://www.us-cert.gov/cas/techalerts/TA10-103B.html
- http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021799.1-1
- http://www.oracle.com/technetwork/topics/security/cpuapr2010-099504.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/55991
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6959
- http://www.securityfocus.com/archive/1/509276/100/0/threaded
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/sun
- canonical/sun opensolaris
- version/sun opensolaris/snv_127
- version/sun opensolaris/snv_70
- version/sun opensolaris/snv_114
- version/sun opensolaris/snv_90
- version/sun opensolaris/snv_93
- version/sun opensolaris/snv_110
- version/sun opensolaris/snv_85
- version/sun opensolaris/snv_116
- version/sun opensolaris/snv_120
- version/sun opensolaris/snv_72
- version/sun opensolaris/snv_117
- version/sun opensolaris/snv_87
- version/sun opensolaris/snv_123
- version/sun opensolaris/snv_92
- version/sun opensolaris/snv_131
- version/sun opensolaris/snv_77
- version/sun opensolaris/snv_126
- version/sun opensolaris/snv_80
- version/sun opensolaris/snv_130
- version/sun opensolaris/snv_119
- version/sun opensolaris/snv_103
- version/sun opensolaris/snv_84
- version/sun opensolaris/snv_121
- version/sun opensolaris/snv_106
- version/sun opensolaris/snv_86
- version/sun opensolaris/snv_100
- version/sun opensolaris/snv_112
- version/sun opensolaris/snv_89
- version/sun opensolaris/snv_124
- version/sun opensolaris/snv_129
- version/sun opensolaris/snv_78
- version/sun opensolaris/snv_96
- version/sun opensolaris/snv_132
- version/sun opensolaris/snv_99
- version/sun opensolaris/snv_107
- version/sun opensolaris/snv_79
- version/sun opensolaris/snv_122
- version/sun opensolaris/snv_115
- version/sun opensolaris/snv_69
- version/sun opensolaris/snv_98
- version/sun opensolaris/snv_109
- version/sun opensolaris/snv_113
- version/sun opensolaris/snv_71
- version/sun opensolaris/snv_82
- version/sun opensolaris/snv_102
- version/sun opensolaris/snv_105
- version/sun opensolaris/snv_108
- version/sun opensolaris/snv_75
- version/sun opensolaris/snv_81
- version/sun opensolaris/snv_128
- version/sun opensolaris/snv_95
- version/sun opensolaris/snv_133
- version/sun opensolaris/snv_88
- version/sun opensolaris/snv_73
- version/sun opensolaris/snv_104
- version/sun opensolaris/snv_94
- version/sun opensolaris/snv_101
- version/sun opensolaris/snv_83
- version/sun opensolaris/snv_97
- version/sun opensolaris/snv_125
- version/sun opensolaris/snv_74
- version/sun opensolaris/snv_111
- version/sun opensolaris/snv_91
- version/sun opensolaris/snv_76
- version/sun opensolaris/snv_118
- canonical/sun solaris
- version/sun solaris/10.0