CVE-2010-2803

The drm_ioctl function in drivers/gpu/drm/drm_drv.c in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 2.6.27.53, 2.6.32.x before 2.6.32.21, 2.6.34.x before 2.6.34.6, and 2.6.35.x before 2.6.35.4 allows local users to obtain potentially sensitive information from kernel memory by requesting a large memory-allocation amount.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
1.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:P/I:N/A:N
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 24%
VendorProductVersion
linuxlinux_kernel
𝑥
< 2.6.27.53
linuxlinux_kernel
2.6.32 ≤
𝑥
< 2.6.32.21
linuxlinux_kernel
2.6.34 ≤
𝑥
< 2.6.34.6
linuxlinux_kernel
2.6.35 ≤
𝑥
< 2.6.35.4
debiandebian_linux
5.0
opensuseopensuse
11.1
opensuseopensuse
11.3
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux
maverick
Fixed 2.6.35-18.24
released
lucid
Fixed 2.6.32-24.41
released
karmic
Fixed 2.6.31-22.63
released
jaunty
Fixed 2.6.28-19.64
released
hardy
not-affected
dapper
dne
linux-ec2
maverick
ignored
lucid
Fixed 2.6.32-308.15
released
karmic
Fixed 2.6.31-307.17
released
hardy
dne
dapper
dne
linux-fsl-imx51
maverick
dne
lucid
Fixed 2.6.31-608.19
released
karmic
Fixed 2.6.31-112.30
released
hardy
dne
dapper
dne
linux-mvl-dove
maverick
not-affected
lucid
Fixed 2.6.32-208.24
released
karmic
Fixed 2.6.31-214.30
released
hardy
dne
dapper
dne
linux-source-2.6.15
maverick
dne
lucid
dne
karmic
dne
jaunty
dne
hardy
dne
dapper
not-affected
Common Weakness Enumeration
References
http://git.kernel.org/?p=linux/kernel/git/airlied/drm-2.6.git%3Ba=commit%3Bh=1b2f1489633888d4a06028315dc19d65768a1c05
http://git.kernel.org/?p=linux/kernel/git/airlied/drm-2.6.git%3Ba=commit%3Bh=b9f0aee83335db1f3915f4e42a5e21b351740afd
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b9f0aee83335db1f3915f4e42a5e21b351740afd
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html
http://secunia.com/advisories/41512
http://www.debian.org/security/2010/dsa-2094
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.53
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.21
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34.6
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35.4
http://www.mandriva.com/security/advisories?name=MDVSA-2010:198
http://www.redhat.com/support/errata/RHSA-2010-0842.html
http://www.vupen.com/english/advisories/2010/2430
http://www.vupen.com/english/advisories/2011/0298
https://bugzilla.redhat.com/show_bug.cgi?id=621435
http://git.kernel.org/?p=linux/kernel/git/airlied/drm-2.6.git%3Ba=commit%3Bh=1b2f1489633888d4a06028315dc19d65768a1c05
http://git.kernel.org/?p=linux/kernel/git/airlied/drm-2.6.git%3Ba=commit%3Bh=b9f0aee83335db1f3915f4e42a5e21b351740afd
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b9f0aee83335db1f3915f4e42a5e21b351740afd
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html
http://secunia.com/advisories/41512
http://www.debian.org/security/2010/dsa-2094
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.53
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.21
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34.6
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35.4
http://www.mandriva.com/security/advisories?name=MDVSA-2010:198
http://www.redhat.com/support/errata/RHSA-2010-0842.html
http://www.vupen.com/english/advisories/2010/2430
http://www.vupen.com/english/advisories/2011/0298
https://bugzilla.redhat.com/show_bug.cgi?id=621435