CVE-2010-4157 (retired)

Priority
Description
Integer overflow in the ioc_general function in drivers/scsi/gdth.c in the
Linux kernel before 2.6.36.1 on 64-bit platforms allows local users to
cause a denial of service (memory corruption) or possibly have unspecified
other impact via a large argument in an ioctl call.
Ubuntu-Description
James Bottomley discovered that the ICP vortex storage array controller
driver did not validate certain sizes. A local attacker on a 64bit system
could exploit this to crash the kernel, leading to a denial of service.
Assigned-to
apw
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
More Information

Updated: 2019-03-26 11:53:54 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)