Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-3437NULL Pointer Dereference in Kernel

CWE-476NULL Pointer Dereference13 documents8 sources
Severity
6.6MEDIUMNVD
EPSS
1.9%
top 16.81%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
8
Linux KernelCanonical Ubuntu LinuxDebian Linux+5 more
Timeline
PublishedOct 4
Latest updateMay 13

Description

Integer signedness error in the pkt_find_dev_from_minor function in drivers/block/pktcdvd.c in the Linux kernel before 2.6.36-rc6 allows local users to obtain sensitive information from kernel memory or cause a denial of service (invalid pointer dereference and system crash) via a crafted index value in a PKT_CTRL_CMD_STATUS ioctl call.

CVSS vector

AV:L/AC:L/C:C/I:N/A:CExploitability: 3.9 | Impact: 9.2

Affected Packages6 packages

NVDlinux/linux_kernel< 2.6.36+1

Also affects: Debian Linux 5.0, Ubuntu Linux 10.04, 10.10, 6.06, 8.04, 9.04, 9.10

Patches

Patch: bugzilla.redhat.comPatch: bugzilla.redhat.com

🔴Vulnerability Details

3
GHSA
GHSA-mw2c-85qx-pgmh: Integer signedness error in the pkt_find_dev_from_minor function in drivers/block/pktcdvd2022-05-13
CVEList
CVE-2010-3437: Integer signedness error in the pkt_find_dev_from_minor function in drivers/block/pktcdvd2010-10-04
VulnCheck
Linux Kernel NULL Pointer Dereference2010

💥Exploits & PoCs

1
Exploit-DB
Linux Kernel < 2.6.36-rc6 (RedHat / Ubuntu 10.04) - 'pktcdvd' Kernel Memory Disclosure2010-09-29

📋Vendor Advisories

7
Ubuntu
Linux kernel (OMAP4) vulnerabilities2011-04-20
Ubuntu
Linux Kernel vulnerabilities (Marvell Dove)2011-03-25
Ubuntu
Linux kernel vulnerabilities2011-03-03
Ubuntu
Linux kernel vulnerabilities2011-02-28
Ubuntu
Linux kernel vulnerabilities2011-02-25

💬Community

1
Bugzilla
CVE-2010-3437 kernel: pktcdvd ioctl dev_minor missing range check2010-09-28
CVE-2010-3437 — NULL Pointer Dereference in Kernel | cvebase