CVE-2010-2248
Vulnerability Summary
Timeline
Description
fs/cifs/cifssmb.c in the CIFS implementation in the Linux kernel before 2.6.34-rc4 allows remote attackers to cause a denial of service (panic) via an SMB response packet with an invalid CountHigh value, as demonstrated by a response from an OS/2 server, related to the CIFSSMBWrite and CIFSSMBWrite2 functions.
CVSS Metrics
- v2.0•HIGH•Score: 7.8AV:N/AC:L/Au:N/C:N/I:N/A:C
EPSS Trends
Current EPSS score: 2.32%• Percentile: 85%
Techniques & Countermeasures
- CWE-20•Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Affected Systems
- linux•linux_kernel
≤ 2.6.34 | 2.6.0 | 2.6.1 | 2.6.2 | 2.6.3 | 2.6.4 | 2.6.5 | 2.6.6 | 2.6.7 | 2.6.8 | 2.6.8.1 | 2.6.9 | 2.6.10 | 2.6.11 | 2.6.11.1 | 2.6.11.2 | 2.6.11.3 | 2.6.11.4 | 2.6.11.5 | 2.6.11.6 | 2.6.11.7 | 2.6.11.8 | 2.6.11.9 | 2.6.11.10 | 2.6.11.11 | 2.6.11.12 | 2.6.12 | 2.6.12.1 | 2.6.12.2 | 2.6.12.3 | 2.6.12.4 | 2.6.12.5 | 2.6.12.6 | 2.6.13 | 2.6.13.1 | 2.6.13.2 | 2.6.13.3 | 2.6.13.4 | 2.6.13.5 | 2.6.14 | 2.6.14.1 | 2.6.14.3 | 2.6.14.4 | 2.6.14.5 | 2.6.14.6 | 2.6.14.7 | 2.6.15 | 2.6.15.1 | 2.6.15.2 | 2.6.15.3 | 2.6.15.4 | 2.6.15.5 | 2.6.15.6 | 2.6.15.7 | 2.6.16 | 2.6.16.1 | 2.6.16.2 | 2.6.16.3 | 2.6.16.4 | 2.6.16.5 | 2.6.16.6 | 2.6.16.7 | 2.6.16.8 | 2.6.16.9 | 2.6.16.10 | 2.6.16.11 | 2.6.16.12 | 2.6.16.13 | 2.6.16.14 | 2.6.16.15 | 2.6.16.16 | 2.6.16.17 | 2.6.16.18 | 2.6.16.19 | 2.6.16.20 | 2.6.16.21 | 2.6.16.22 | 2.6.16.23 | 2.6.16.24 | 2.6.16.25 | 2.6.16.26 | 2.6.16.27 | 2.6.16.28 | 2.6.16.29 | 2.6.16.30 | 2.6.16.31 | 2.6.17 | 2.6.17.1 | 2.6.17.2 | 2.6.17.3 | 2.6.17.4 | 2.6.17.5 | 2.6.17.6 | 2.6.17.7 | 2.6.17.8 | 2.6.17.9 | 2.6.17.10 | 2.6.17.11 | 2.6.17.12 | 2.6.17.13 | 2.6.17.14 | 2.6.18.1 | 2.6.18.2 | 2.6.18.3 | 2.6.18.4 | 2.6.18.5 | 2.6.18.6 | 2.6.18.7 | 2.6.18.8 | 2.6.22 | 2.6.22.2 | 2.6.22.3 | 2.6.22.4 | 2.6.22.5 | 2.6.22.6 | 2.6.22.7 | 2.6.23 | 2.6.23:rc1 | 2.6.23:rc2 | 2.6.23.1 | 2.6.23.2 | 2.6.23.3 | 2.6.23.4 | 2.6.23.5 | 2.6.23.6 | 2.6.23.7 | 2.6.24:rc1 | 2.6.24:rc2 | 2.6.24:rc3 | 2.6.24:rc4 | 2.6.24:rc5 | 2.6.32 | 2.6.32.1 | 2.6.32.2 | 2.6.32.3 | 2.6.32.4 | 2.6.33 | 2.6.33:rc1 | 2.6.33:rc2 | 2.6.33:rc3 | 2.6.33:rc4 | 2.6.33:rc5 | 2.6.33:rc6 | 2.6.33.1 | 2.6.33.2 | 2.6.34:rc1 | 2.6.34:rc2
References (17)
- http://www.redhat.com/support/errata/RHSA-2010-0610.html
- http://www.ubuntu.com/usn/USN-1000-1
- http://www.openwall.com/lists/oss-security/2010/06/28/1
- https://rhn.redhat.com/errata/RHSA-2010-0606.html
- http://www.kernel.org/pub/linux/kernel/v2.6/testing/v2.6.34/ChangeLog-2.6.34-rc4
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:198
- http://www.securityfocus.com/bid/42242
- http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00004.html
- http://www.openwall.com/lists/oss-security/2010/06/28/6
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:051
- http://secunia.com/advisories/43315
- https://bugzilla.redhat.com/show_bug.cgi?id=608583
- http://www.debian.org/security/2010/dsa-2094
- http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6513a81e9325d712f1bfb9a1d7b750134e49ff18
- http://www.vmware.com/security/advisories/VMSA-2011-0003.html
- http://securitytracker.com/id?1024285
- http://www.securityfocus.com/archive/1/516397/100/0/threaded