Launchpad CVE tracker

CVE 2010-3298

The hso_get_count function in drivers/net/usb/hso.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call.

Related bugs and status

CVE-2010-3298 (Candidate) is related to these bugs:

Bug #683474: Karmic: 2.6.31-22.70 -proposed tracker

		In	Importance	Status
683474	Karmic: 2.6.31-22.70 -proposed tracker	linux (Ubuntu)	Undecided	Invalid
683474	Karmic: 2.6.31-22.70 -proposed tracker	linux (Ubuntu Karmic)	Undecided	Fix Released
683474	Karmic: 2.6.31-22.70 -proposed tracker	linux-ec2 (Ubuntu)	Undecided	Invalid
683474	Karmic: 2.6.31-22.70 -proposed tracker	linux-ec2 (Ubuntu Karmic)	Undecided	Won't Fix

Bug #713223: Karmic fsl-imx51: tracking bug, update to 2.6.31-112.30

Summary				In	Importance	Status
	713223	Karmic fsl-imx51: tracking bug, update to 2.6.31-112.30		linux-fsl-imx51 (Ubuntu)	Undecided	Invalid
	713223	Karmic fsl-imx51: tracking bug, update to 2.6.31-112.30		linux-fsl-imx51 (Ubuntu Karmic)	Undecided	Fix Released

Bug #713266: Lucid fsl-imx51: tracking bug, update to 2.6.31-608.22

Summary				In	Importance	Status
	713266	Lucid fsl-imx51: tracking bug, update to 2.6.31-608.22		linux-fsl-imx51 (Ubuntu)	Undecided	Invalid
	713266	Lucid fsl-imx51: tracking bug, update to 2.6.31-608.22		linux-fsl-imx51 (Ubuntu Lucid)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2010-3298

References