CVE-2010-2963

by Fred · 26/11/2010

drivers/media/video/v4l2-compat-ioctl32.c in the Video4Linux (V4L) implementation in the Linux kernel before 2.6.36 on 64-bit platforms does not validate the destination of a memory copy operation, which allows local users to write to arbitrary kernel memory locations, and consequently gain privileges, via a VIDIOCSTUNER ioctl call on a /dev/video device, followed by a VIDIOCSMICROCODE ioctl call on this device.

Date published : 2010-11-26

http://www.securityfocus.com/bid/44242

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=3e645d6b485446c54c6745c5e2cf5c528fe4deec

CVE-2010-2963

Similar

Recent Posts

Categories

CVE-2010-2963

Share this:

Similar

Recent Posts

Categories

Tags