CVE-2010-1451 — Vulnetix

Try Vulnetix Request Demo

CVE-2010-1451 PUBLISHED CVSS 2.0999999046325684 LOW

The TSB I-TLB load implementation in arch/sparc/kernel/tsb.S in the Linux kernel before 2.6.33 on the SPARC platform does not properly obtain the value of a certain _PAGE_EXEC_4U bit and consequently does not properly implement a non-executable stack, which makes it easier for context-dependent attackers to exploit stack-based buffer overflows via a crafted application.

EPSS 0.10% · 27.1th percentile

Risk Scores

CVSS v2.0

2.0999999046325684

EPSS Score

0.10%

27.1th percentile

Affected Products

Vendor	Product	Versions
linux	linux_kernel	0
debian	debian_linux	5.0
n/a	n/a	n/a

Timeline

May 7, 2010 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

[oss-security] 20100224 kernel: execution possible in non-executable mappings in recent 2.6 kernels (SPARC only) mailing-list
[linux-sparc] 20100219 Execution possible in non-executable mappings in recent 2.6 kernels mailing-list
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.33 url
[oss-security] 20100505 Re: CVE Request [was Re: kernel: execution possible in non-executable mappings in recent 2.6 kernels (SPARC only)] mailing-list
[linux-sparc] 20100219 Re: Execution possible in non-executable mappings in recent 2.6 kernels mailing-list
DSA-2053 vendor-advisory
39830 third-party-advisory
https://nvd.nist.gov/vuln/detail/CVE-2010-1451 advisory

Open in Interactive Console →