CVE-2010-0415

Priority
Medium
Description
The do_pages_move function in mm/migrate.c in the Linux kernel before
2.6.33-rc7 does not validate node values, which allows local users to read
arbitrary kernel memory locations, cause a denial of service (OOPS), and
possibly have unspecified other impact by specifying a node that is not
part of the kernel's node set.
References
Notes
kees> Introduced in 2.6.18.
Package
Upstream:not-affected
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):DNE
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.34)
Ubuntu 8.04 LTS (Hardy Heron):released (2.6.24-27.68)
Ubuntu 10.04 LTS (Lucid Lynx):not-affected
Patches:
Upstream:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=6f5a55f1a6c5abee15a0e878e5c74d9f1569b8b0
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:20:40 UTC (commit 5347)