U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
  1. Vulnerabilities

CVE-2010-0291 Detail

Description

The Linux kernel before 2.6.32.4 allows local users to gain privileges or cause a denial of service (panic) by calling the (1) mmap or (2) mremap function, aka the "do_mremap() mess" or "mremap/mmap mess."


Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.
CVSS 4.0 Severity and Vector Strings:

NIST CVSS score
NIST: NVD
N/A
NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

URL Source(s) Tag(s)
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0067bd8a55862ac9dd212bd1c4f6f5bff1ca1301 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=05d72faa6d13c9d857478a5d35c85db9adada685 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=097eed103862f9c6a97f2e415e21d1134017b135 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0ec62d290912bb4b989be7563851bc364ec73b56 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1a0ef85f84feb13f07b604fcf5b90ef7c2b5c82f CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2c6a10161d0b5fc047b5bd81b03693b9af99fab5 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2ea1d13f64efdf49319e86c87d9ba38c30902782 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=54f5de709984bae0d31d823ff03de755f9dcac54 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=564b3bffc619dcbdd160de597b0547a7017ea010 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=570dcf2c15463842e384eb597a87c1e39bead99b CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8c7b49b3ecd48923eb64ff57e07a1cdb74782970 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=9206de95b1ea68357996ec02be5db0638a0de2c1 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=935874141df839c706cd6cdc438e85eb69d1525e CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=aa65607373a4daf2010e8c3867b6317619f3c1a3 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=bb52d6694002b9d632bb355f64daa045c6293a4e CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c4caa778157dbbf04116f0ac2111e389b5cd7a29 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e77414e0aad6a1b063ba5e5750c582c75327ea6a CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ecc1a8993751de4e82eb18640d631dae1f626bd6 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f106af4e90eadd76cfc0b5325f659619e08fb762 CVE, Inc., Red Hat
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f8b7256096a20436f6d0926747e3ac3d64c81d24 CVE, Inc., Red Hat
http://groups.google.co.jp/group/fa.linux.kernel/browse_thread/thread/8bf22336b1082090 CVE, Inc., Red Hat Third Party Advisory 
http://groups.google.com/group/linux.kernel/msg/895f20870532241e CVE, Inc., Red Hat Third Party Advisory 
http://marc.info/?l=linux-arch&m=126004438008670&w=2 CVE, Inc., Red Hat Third Party Advisory 
http://marc.info/?l=oss-security&m=126388181420690&w=2 CVE, Inc., Red Hat Mailing List  Third Party Advisory 
http://marc.info/?l=oss-security&m=126393370931972&w=2 CVE, Inc., Red Hat Mailing List  Third Party Advisory 
http://marc.info/?l=oss-security&m=126395874130875&w=2 CVE, Inc., Red Hat Mailing List  Third Party Advisory 
http://marc.info/?l=oss-security&m=126396065732697&w=2 CVE, Inc., Red Hat Mailing List  Third Party Advisory 
http://marc.info/?l=oss-security&m=126396609004884&w=2 CVE, Inc., Red Hat Mailing List  Third Party Advisory 
http://marc.info/?l=oss-security&m=126399980216047&w=2 CVE, Inc., Red Hat Mailing List  Third Party Advisory 
http://marc.info/?l=oss-security&m=126400443123998&w=2 CVE, Inc., Red Hat Mailing List  Third Party Advisory 
http://marc.info/?l=oss-security&m=126406814304720&w=2 CVE, Inc., Red Hat Mailing List  Third Party Advisory 
http://secunia.com/advisories/38492 CVE, Inc., Red Hat Third Party Advisory 
http://secunia.com/advisories/39033 CVE, Inc., Red Hat Third Party Advisory 
http://secunia.com/advisories/43315 CVE, Inc., Red Hat Third Party Advisory 
http://www.debian.org/security/2010/dsa-1996 CVE, Inc., Red Hat Third Party Advisory 
http://www.debian.org/security/2010/dsa-2005 CVE, Inc., Red Hat Third Party Advisory 
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.4 CVE, Inc., Red Hat Patch  Vendor Advisory 
http://www.redhat.com/support/errata/RHSA-2010-0161.html CVE, Inc., Red Hat Third Party Advisory 
http://www.securityfocus.com/archive/1/516397/100/0/threaded CVE, Inc., Red Hat Third Party Advisory  VDB Entry 
http://www.securityfocus.com/bid/37906 CVE, Inc., Red Hat Third Party Advisory  VDB Entry 
http://www.vmware.com/security/advisories/VMSA-2011-0003.html CVE, Inc., Red Hat Third Party Advisory 
https://bugzilla.redhat.com/show_bug.cgi?id=556703 CVE, Inc., Red Hat Issue Tracking  Third Party Advisory 
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11824 CVE, Inc., Red Hat Third Party Advisory 

Weakness Enumeration

CWE-ID CWE Name Source
CWE-264 Permissions, Privileges, and Access Controls cwe source acceptance level NIST  

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

7 change records found show changes

Quick Info

CVE Dictionary Entry:
CVE-2010-0291
NVD Published Date:
02/15/2010
NVD Last Modified:
04/10/2025
Source:
Red Hat, Inc.