CVE-2010-4649 — Integer Overflow or Wraparound in Kernel

CWE-190 — Integer Overflow or Wraparound CWE-909 — Missing Initialization of Resource15 documents5 sources

Severity

6.9MEDIUMNVD

NVD2.1

EPSS

0.1%

top 78.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Redhat Enterprise Linux Desktop Redhat Enterprise Linux EUS +3 more

Timeline

PublishedFeb 18

Latest updateMay 13

Description

Integer overflow in the ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large value of a certain structure member.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages4 packages

▶NVDlinux/linux_kernel< 2.6.37

▶NVDredhat/enterprise_linux_server5.0

▶NVDredhat/enterprise_linux_desktop5.0

▶NVDredhat/enterprise_linux_workstation5.0

Also affects: Enterprise Linux 5.6

Patches

Patch: bugzilla.redhat.com ↗Patch: bugzilla.redhat.com ↗

🔴Vulnerability Details

GHSA

GHSA-r7qr-vhfp-52c9: The ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd↗2022-05-13

▶

GHSA

GHSA-2ch2-ch47-wm8m: Integer overflow in the ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd↗2022-05-13

▶

📋Vendor Advisories

Ubuntu

Linux kernel (OMAP4) vulnerabilities↗2011-09-13

▶

Ubuntu

Linux kernel (i.MX51) vulnerabilities↗2011-09-13

▶

Ubuntu

Linux kernel (Maverick backport) vulnerabilities↗2011-08-09

▶

Ubuntu

Linux kernel vulnerabilities↗2011-08-09

▶

Ubuntu

Linux Kernel vulnerabilities (Marvell Dove)↗2011-03-25

▶

💬Community

Bugzilla

CVE-2010-4649 CVE-2011-1044 kernel: IB/uverbs: Handle large number of entries in poll CQ↗2011-01-07

▶