CVE-2010-4668 — Vulnetix

CVE-2010-4668 PUBLISHED

Reported by mitre · Published January 3, 2011

The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 2.6.37-rc7 allows local users to cause a denial of service (panic) via a zero-length I/O request in a device ioctl to a SCSI device, related to an unaligned map. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4163.

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
n/a	n/a	n/a, n/a

Timeline

Jan 3, 2011 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 2, 2023 EPSS Score
May 25, 2023 EPSS Score

References

45660 vdb-entryx_refsource_BID
[oss-security] 20101130 Re: CVE request: kernel: Multiple DoS issues in block layer mailing-listx_refsource_MLIST
[oss-security] 20101130 Re: CVE request: kernel: Multiple DoS issues in block layer mailing-listx_refsource_MLIST
RHSA-2011:0007 vendor-advisoryx_refsource_REDHAT
[oss-security] 20101129 Re: CVE request: kernel: Multiple DoS issues in block layer mailing-listx_refsource_MLIST
[linux-kernel] 20101129 Re: [PATCH] block: check for proper length of iov entries earlier in blk_rq_map_user_iov() mailing-listx_refsource_MLIST
[linux-kernel] 20101129 [PATCH] block: check for proper length of iov entries earlier in blk_rq_map_user_iov() mailing-listx_refsource_MLIST
42890 third-party-advisoryx_refsource_SECUNIA
x_refsource_CONFIRM
x_refsource_CONFIRM
x_refsource_CONFIRM
linux-blkrqmapuseriov-dos(64496) vdb-entryx_refsource_XF

Open in Interactive Console →