CVE-2010-0415
CVE-2010-0415
The do_pages_move function in mm/migrate.c in the Linux kernel before 2.6.33-rc7 does not validate node values, which allows local users to read arbitrary kernel memory locations, cause a denial of service (OOPS), and possibly have unspecified other impact by specifying a node that is not part of the kernel's node set.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/40810unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6f5a55f1a6c5abee15a0e878e5c74d9f1569b8b0http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035070.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-February/035159.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-03/msg00000.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-03/msg00006.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=562582http://secunia.com/advisories/38492http://secunia.com/advisories/38557http://secunia.com/advisories/38779http://secunia.com/advisories/38922http://secunia.com/advisories/39033http://secunia.com/advisories/43315