CVE-2010-3437 (retired)

Priority
Description
Integer signedness error in the pkt_find_dev_from_minor function in
drivers/block/pktcdvd.c in the Linux kernel before 2.6.36-rc6 allows local
users to obtain sensitive information from kernel memory or cause a denial
of service (invalid pointer dereference and system crash) via a crafted
index value in a PKT_CTRL_CMD_STATUS ioctl call.
Ubuntu-Description
Dan Rosenberg discovered that the CD driver did not correctly check
parameters. A local attacker could exploit this to read arbitrary kernel
memory, leading to a loss of privacy.
Notes
 smb> This was assigned to bradf and I re-assigned it to myself for minor
 smb> fixups and so the tools will find things.
Assigned-to
smb
Package
Upstream:released (2.6.36~rc6)
Package
Upstream:released (2.6.36~rc6)
Package
Upstream:released (2.6.36~rc6)
Package
Upstream:released (2.6.36~rc6)
Package
Upstream:released (2.6.36~rc6)
More Information

Updated: 2019-03-26 11:53:05 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)