CVE-2010-2240

Advisory lineage Upstream: 0 Downstream: 8
Modified
Published: 03 Sept 2010, 19:00
Last modified:07 Aug 2024, 02:25

Vulnerability Summary

Overall Risk (default)
medium
39/100
CVSS Score
7.2 HIGH
v2.0 (nvd)
EPSS Score
0.14% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
1 found
Dark Web
Not detected

Timeline

03 Sept 2010, 19:00
Published
Vulnerability first disclosed
07 Aug 2024, 02:25
Last Modified
Vulnerability information updated

Description

The do_anonymous_page function in mm/memory.c in the Linux kernel before 2.6.27.52, 2.6.32.x before 2.6.32.19, 2.6.34.x before 2.6.34.4, and 2.6.35.x before 2.6.35.2 does not properly separate the stack and the heap, which allows context-dependent attackers to execute arbitrary code by writing to the bottom page of a shared memory segment, as demonstrated by a memory-exhaustion attack against the X.Org X server.

CVSS Metrics

  • v2.0HIGHScore: 7.2AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 0.14% Percentile: 33%

Techniques & Countermeasures

  • CWE-94Improper Control of Generation of Code ('Code Injection')

    The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

Affected Systems

  • linuxlinux_kernel

    ≤ 2.6.27.51 | 2.6.32 | 2.6.32.1 | 2.6.32.2 | 2.6.32.3 | 2.6.32.4 | 2.6.32.5 | 2.6.32.6 | 2.6.32.7 | 2.6.32.8 | 2.6.32.9 | 2.6.32.10 | 2.6.32.11 | 2.6.32.12 | 2.6.32.13 | 2.6.32.14 | 2.6.32.15 | 2.6.32.16 | 2.6.32.17 | 2.6.32.18 | 2.6.34.1 | 2.6.34.2 | 2.6.34.3 | 2.6.35.1

References (21)