NuytsTech Security

CVE-2010-4343

by ·

drivers/scsi/bfa/bfa_core.c in the Linux kernel before 2.6.35 does not initialize a certain port data structure, which allows local users to cause a denial of service (system crash) via read operations on an fc_host statistics file.

Date published : 2010-12-29

http://www.securityfocus.com/bid/45262

http://www.securityfocus.com/archive/1/520102/100/0/threaded

Tags: