CVE-2010-4157

Priority
Description
Integer overflow in the ioc_general function in drivers/scsi/gdth.c in the
Linux kernel before 2.6.36.1 on 64-bit platforms allows local users to
cause a denial of service (memory corruption) or possibly have unspecified
other impact via a large argument in an ioctl call.
Ubuntu-Description
James Bottomley discovered that the ICP vortex storage array controller
driver did not validate certain sizes. A local attacker on a 64bit system
could exploit this to crash the kernel, leading to a denial of service.
Assigned-to
apw
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
More Information

Updated: 2019-01-14 21:54:49 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)