CVE 2010-2240
The do_anonymous_page function in mm/memory.c in the Linux kernel before 2.6.27.52, 2.6.32.x before 2.6.32.19, 2.6.34.x before 2.6.34.4, and 2.6.35.x before 2.6.35.2 does not properly separate the stack and the heap, which allows context-dependent attackers to execute arbitrary code by writing to the bottom page of a shared memory segment, as demonstrated by a memory-exhaustion attack against the X.Org X server.
Related bugs and status
CVE-2010-2240 (Candidate) is related to these bugs:
Bug #595489: lvm snapshot causes deadlock in 2.6.35
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
595489 | lvm snapshot causes deadlock in 2.6.35 | linux (Ubuntu) | High | Fix Released | ||
595489 | lvm snapshot causes deadlock in 2.6.35 | Linux | Medium | Fix Released | ||
595489 | lvm snapshot causes deadlock in 2.6.35 | linux (Ubuntu Maverick) | High | Fix Released | ||
595489 | lvm snapshot causes deadlock in 2.6.35 | linux (Ubuntu Lucid) | High | Fix Released |
Bug #620994: linux 2.6.24-28.75 breaks xen flavours (xen kernel bug: 'kernel BUG at /build/buildd/linux-2.6.24/debian/build/custom-source-xen/mm/memory.c:2704')
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
620994 | linux 2.6.24-28.75 breaks xen flavours (xen kernel bug: 'kernel BUG at /build/buildd/linux-2.6.24/debian/build/custom-source-xen/mm/memory.c:2704') | linux (Ubuntu) | Undecided | Invalid | ||
620994 | linux 2.6.24-28.75 breaks xen flavours (xen kernel bug: 'kernel BUG at /build/buildd/linux-2.6.24/debian/build/custom-source-xen/mm/memory.c:2704') | linux (Ubuntu Hardy) | High | Fix Released |
Bug #622418: UpdateManager fails to install Important Security Update to linux image
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
622418 | UpdateManager fails to install Important Security Update to linux image | synaptic (Ubuntu) | Undecided | Invalid | ||
622418 | UpdateManager fails to install Important Security Update to linux image | Linux | Undecided | Invalid | ||
622418 | UpdateManager fails to install Important Security Update to linux image | Ubuntu security tools | Undecided | Invalid | ||
622418 | UpdateManager fails to install Important Security Update to linux image | grub | Undecided | Invalid | ||
622418 | UpdateManager fails to install Important Security Update to linux image | dpkg | Undecided | Invalid | ||
622418 | UpdateManager fails to install Important Security Update to linux image | dpkg (Ubuntu) | Undecided | Invalid | ||
622418 | UpdateManager fails to install Important Security Update to linux image | APT | Undecided | Invalid |
Bug #713223: Karmic fsl-imx51: tracking bug, update to 2.6.31-112.30
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
713223 | Karmic fsl-imx51: tracking bug, update to 2.6.31-112.30 | linux-fsl-imx51 (Ubuntu) | Undecided | Invalid | ||
713223 | Karmic fsl-imx51: tracking bug, update to 2.6.31-112.30 | linux-fsl-imx51 (Ubuntu Karmic) | Undecided | Fix Released |
Bug #802464: linux: 2.6.38-10.46 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
802464 | linux: 2.6.38-10.46 -proposed tracker | linux (Ubuntu) | Medium | Fix Released | ||
802464 | linux: 2.6.38-10.46 -proposed tracker | Kernel SRU Workflow | Undecided | Fix Released | ||
802464 | linux: 2.6.38-10.46 -proposed tracker | Kernel SRU Workflow certification-testing | Undecided | Fix Released | ||
802464 | linux: 2.6.38-10.46 -proposed tracker | Kernel SRU Workflow prepare-package | Undecided | Fix Released | ||
802464 | linux: 2.6.38-10.46 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Undecided | Fix Released | ||
802464 | linux: 2.6.38-10.46 -proposed tracker | Kernel SRU Workflow promote-to-security | Undecided | Fix Released | ||
802464 | linux: 2.6.38-10.46 -proposed tracker | Kernel SRU Workflow promote-to-updates | Undecided | Fix Released | ||
802464 | linux: 2.6.38-10.46 -proposed tracker | Kernel SRU Workflow regression-testing | Undecided | Fix Released | ||
802464 | linux: 2.6.38-10.46 -proposed tracker | Kernel SRU Workflow security-signoff | Undecided | Fix Released | ||
802464 | linux: 2.6.38-10.46 -proposed tracker | Kernel SRU Workflow verification-testing | Undecided | Fix Released |
Bug #810022: test-kernel-security failure on 3.0.0-5
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
810022 | test-kernel-security failure on 3.0.0-5 | linux (Ubuntu) | Undecided | Fix Released |
Bug #1012482: linux-ti-omap4: 3.0.0-1212.24 -proposed tracker
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1012482 | linux-ti-omap4: 3.0.0-1212.24 -proposed tracker | linux-ti-omap4 (Ubuntu) | Medium | Invalid | ||
1012482 | linux-ti-omap4: 3.0.0-1212.24 -proposed tracker | linux-ti-omap4 (Ubuntu Oneiric) | Undecided | Fix Released | ||
1012482 | linux-ti-omap4: 3.0.0-1212.24 -proposed tracker | Kernel SRU Workflow | Undecided | Fix Released | ||
1012482 | linux-ti-omap4: 3.0.0-1212.24 -proposed tracker | Kernel SRU Workflow certification-testing | Undecided | Invalid | ||
1012482 | linux-ti-omap4: 3.0.0-1212.24 -proposed tracker | Kernel SRU Workflow prepare-package | Undecided | Fix Released | ||
1012482 | linux-ti-omap4: 3.0.0-1212.24 -proposed tracker | Kernel SRU Workflow prepare-package-meta | Undecided | Fix Released | ||
1012482 | linux-ti-omap4: 3.0.0-1212.24 -proposed tracker | Kernel SRU Workflow promote-to-proposed | Undecided | Fix Released | ||
1012482 | linux-ti-omap4: 3.0.0-1212.24 -proposed tracker | Kernel SRU Workflow promote-to-security | Undecided | Fix Released | ||
1012482 | linux-ti-omap4: 3.0.0-1212.24 -proposed tracker | Kernel SRU Workflow promote-to-updates | Undecided | Fix Released | ||
1012482 | linux-ti-omap4: 3.0.0-1212.24 -proposed tracker | Kernel SRU Workflow regression-testing | Undecided | Fix Released | ||
1012482 | linux-ti-omap4: 3.0.0-1212.24 -proposed tracker | Kernel SRU Workflow security-signoff | Undecided | Fix Released | ||
1012482 | linux-ti-omap4: 3.0.0-1212.24 -proposed tracker | Kernel SRU Workflow upload-to-ppa | Undecided | Fix Released | ||
1012482 | linux-ti-omap4: 3.0.0-1212.24 -proposed tracker | Kernel SRU Workflow verification-testing | Undecided | Fix Released |
Bug #1027524: QRT failed on test_072_config_debug_rodata and test_072_strict_devmem
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1027524 | QRT failed on test_072_config_debug_rodata and test_072_strict_devmem | linux-ti-omap4 (Ubuntu) | Medium | Invalid | ||
1027524 | QRT failed on test_072_config_debug_rodata and test_072_strict_devmem | QA Regression Testing | Undecided | Fix Released |
See the
CVE page on Mitre.org
for more details.