CVE-2010-3079 — Vulnetix

Try Vulnetix Request Demo

CVE-2010-3079 PUBLISHED

Reported by redhat · Published September 30, 2010

kernel/trace/ftrace.c in the Linux kernel before 2.6.35.5, when debugfs is enabled, does not properly handle interaction between mutex possession and llseek operations, which allows local users to cause a denial of service (NULL pointer dereference and outage of all function tracing files) via an lseek call on a file descriptor associated with the set_ftrace_filter file.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a

Timeline

Sep 30, 2010 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

x_refsource_CONFIRM
USN-1041-1 vendor-advisoryx_refsource_UBUNTU
SUSE-SA:2011:007 vendor-advisoryx_refsource_SUSE
RHSA-2010:0842 vendor-advisoryx_refsource_REDHAT
ADV-2011-0298 vdb-entryx_refsource_VUPEN
SUSE-SA:2010:050 vendor-advisoryx_refsource_SUSE
x_refsource_CONFIRM
42758 third-party-advisoryx_refsource_SECUNIA
x_refsource_CONFIRM
43684 vdb-entryx_refsource_BID
ADV-2011-0070 vdb-entryx_refsource_VUPEN

Open in Interactive Console →