CVE-2010-3877
First published: Thu Nov 04 2010(Updated: )
Description of problem: Structure sockaddr_tipc is copied to userland with padding bytes after "id" field in union field "name" unitialized. It leads to leaking of contents of kernel stack memory. We have to initialize them to zero. Reference: <a href="http://marc.info/?l=linux-netdev&m=128854507420917&w=2">http://marc.info/?l=linux-netdev&m=128854507420917&w=2</a> <a href="http://seclists.org/oss-sec/2010/q4/94">http://seclists.org/oss-sec/2010/q4/94</a> Acknowledgements: Red Hat would like to thank Vasiliy Kulikov of Openwall for reporting this issue.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Linux kernel | =2.6.37-rc1 | |
| Linux Linux kernel | <2.6.37 | |
| Linux Linux kernel | =2.6.37 | |
| Debian Debian Linux | =5.0 | |
| debian/linux-2.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://openwall.com/lists/oss-security/2010/11/04/5
- https://bugzilla.redhat.com/show_bug.cgi?id=649717
- http://marc.info/?l=linux-netdev&m=128854507420917&w=2
- http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.37-rc2
- http://openwall.com/lists/oss-security/2010/11/02/7
- http://www.debian.org/security/2010/dsa-2126
- http://www.securityfocus.com/bid/44630
- http://secunia.com/advisories/42884
- http://www.redhat.com/support/errata/RHSA-2011-0017.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:029
- http://secunia.com/advisories/46397
- http://www.vmware.com/security/advisories/VMSA-2011-0012.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64578
- http://www.securityfocus.com/archive/1/520102/100/0/threaded
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=88f8a5e3e7defccd3925cabb1ee4d3994e5cdb52
- http://marc.info/?l=linux-netdev&m=128854507420917&w=2
- https://launchpad.net/bugs/cve/CVE-2010-3877
- http://seclists.org/oss-sec/2010/q4/94
- http://git.kernel.org/linus/88f8a5e3e7defccd3925cabb1ee4d3994e5cdb52
- https://rhn.redhat.com/errata/RHSA-2011-0017.html
- https://security-tracker.debian.org/tracker/CVE-2010-3877
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3877
- https://nvd.nist.gov/vuln/detail/CVE-2010-3877
- https://ubuntu.com/security/CVE-2010-3877
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-3877
- agent/author
- agent/softwarecombine
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- collector/nvd-cve
- source/NVD
- agent/description
- agent/weakness
- agent/severity
- agent/remedy
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/event
- collector/usn-cve
- source/Ubuntu
- vendor/linux
- canonical/linux linux kernel
- version/linux linux kernel/2.6.37-rc1
- version/linux linux kernel/2.6.37
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/5.0
- package-manager/debian