CVE-2010-3877
First published: Thu Nov 04 2010(Updated: )
Description of problem: Structure sockaddr_tipc is copied to userland with padding bytes after "id" field in union field "name" unitialized. It leads to leaking of contents of kernel stack memory. We have to initialize them to zero. Reference: <a href="http://marc.info/?l=linux-netdev&m=128854507420917&w=2">http://marc.info/?l=linux-netdev&m=128854507420917&w=2</a> <a href="http://seclists.org/oss-sec/2010/q4/94">http://seclists.org/oss-sec/2010/q4/94</a> Acknowledgements: Red Hat would like to thank Vasiliy Kulikov of Openwall for reporting this issue.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/linux-2.6 | ||
| Linux Kernel | <2.6.37 | |
| Linux Kernel | =2.6.37 | |
| Linux Kernel | =2.6.37-rc1 | |
| Debian Linux | =5.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://openwall.com/lists/oss-security/2010/11/04/5
- https://bugzilla.redhat.com/show_bug.cgi?id=649717
- http://marc.info/?l=linux-netdev&m=128854507420917&w=2
- http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.37-rc2
- http://openwall.com/lists/oss-security/2010/11/02/7
- http://www.debian.org/security/2010/dsa-2126
- http://www.securityfocus.com/bid/44630
- http://secunia.com/advisories/42884
- http://www.redhat.com/support/errata/RHSA-2011-0017.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:029
- http://secunia.com/advisories/46397
- http://www.vmware.com/security/advisories/VMSA-2011-0012.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64578
- http://www.securityfocus.com/archive/1/520102/100/0/threaded
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=88f8a5e3e7defccd3925cabb1ee4d3994e5cdb52
- http://marc.info/?l=linux-netdev&m=128854507420917&w=2
- https://launchpad.net/bugs/cve/CVE-2010-3877
- http://seclists.org/oss-sec/2010/q4/94
- http://git.kernel.org/linus/88f8a5e3e7defccd3925cabb1ee4d3994e5cdb52
- https://rhn.redhat.com/errata/RHSA-2011-0017.html
- https://security-tracker.debian.org/tracker/CVE-2010-3877
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3877
- https://nvd.nist.gov/vuln/detail/CVE-2010-3877
- https://ubuntu.com/security/CVE-2010-3877
Frequently Asked Questions
What is the severity of CVE-2010-3877?
CVE-2010-3877 has been classified as a high-severity vulnerability due to its potential to leak sensitive kernel stack memory data.
How does CVE-2010-3877 affect system security?
CVE-2010-3877 poses a security risk by allowing unauthorized access to potentially sensitive data stored in the kernel stack via uninitialized padding bytes.
How do I fix CVE-2010-3877?
To mitigate CVE-2010-3877, ensure that the struct sockaddr_tipc is properly initialized to set padding bytes to zero.
Which systems are affected by CVE-2010-3877?
CVE-2010-3877 affects versions of the Linux kernel prior to 2.6.37 as well as Debian Linux version 5.0.
Is there a patch available for CVE-2010-3877?
Yes, a patch is available that addresses CVE-2010-3877 by ensuring proper initialization of the sockaddr_tipc structure.
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-3877
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- agent/weakness
- agent/severity
- collector/mitre-cve
- source/MITRE
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/remedy
- agent/event
- agent/description
- agent/last-modified-date
- agent/trending
- agent/source
- agent/author
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-historical
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- package-manager/debian
- vendor/linux
- canonical/linux kernel
- version/linux kernel/2.6.37
- version/linux kernel/2.6.37-rc1
- vendor/debian
- canonical/debian linux
- version/debian linux/5.0