19 Linux Kernel CVEs in December 2010
Full month · Source: NIST NVD
In December 2010, 19 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 2 were rated High severity and 11 Medium. CVE-2010-3904 was confirmed as actively exploited in the wild and added to the CISA Known Exploited Vulnerabilities catalog. December's 19 CVEs represent 15% of all 2010 Linux kernel CVEs , down from November's 22 (a 14% month-over-month decrease) .
Actively Exploited CVEs — December 2010
1 CVE in CISA KEVCVE-2010-3904 is the only Linux kernel CVE from December 2010 confirmed as actively exploited in the wild. It carries a CVSS score of 7.8 (High severity) and is listed in the CISA Known Exploited Vulnerabilities catalog.
| CVE ID | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|
| CVE-2010-3904 | High KEV | 7.8 | 2010-12-06 | The rds_page_copy_user function in net/rds/page.c in the Reliable Datagram Sockets (RDS) protocol i… |
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2010-3904 | linux | High KEV | 7.8 | 2010-12-06 | The rds_page_copy_user function in net/rds/page.c in the Reliable Datagram Sockets (RDS) protocol implementation in the… | |
| CVE-2010-4342 | linux | High | 7.1 | 2010-12-30 | The aun_incoming function in net/econet/af_econet.c in the Linux kernel before 2.6.37-rc6, when Econet is enabled, allo… | |
| CVE-2010-3848 | linux | Medium | 6.9 | 2010-12-30 | Stack-based buffer overflow in the econet_sendmsg function in net/econet/af_econet.c in the Linux kernel before 2.6.36.… | |
| CVE-2010-3859 | linux | Medium | 6.9 | 2010-12-29 | Multiple integer signedness errors in the TIPC implementation in the Linux kernel before 2.6.36.2 allow local users to … | |
| CVE-2010-4347 | linux | Medium | 6.9 | 2010-12-22 | The ACPI subsystem in the Linux kernel before 2.6.36.2 uses 0222 permissions for the debugfs custom_method file, which … | |
| CVE-2010-4258 | linux | Medium | 6.2 | 2010-12-30 | The do_exit function in kernel/exit.c in the Linux kernel before 2.6.36.2 does not properly handle a KERNEL_DS get_fs v… | |
| CVE-2010-4157 | linux | Medium | 6.2 | 2010-12-10 | Integer overflow in the ioc_general function in drivers/scsi/gdth.c in the Linux kernel before 2.6.36.1 on 64-bit platf… | |
| CVE-2010-4343 | linux | Medium | 5.5 | 2010-12-29 | drivers/scsi/bfa/bfa_core.c in the Linux kernel before 2.6.35 does not initialize a certain port data structure, which … | |
| CVE-2010-4161 | linux | Medium | 4.9 | 2010-12-30 | The udp_queue_rcv_skb function in net/ipv4/udp.c in a certain Red Hat build of the Linux kernel 2.6.18 in Red Hat Enter… | |
| CVE-2010-3880 | linux | Medium | 4.9 | 2010-12-10 | net/ipv4/inet_diag.c in the Linux kernel before 2.6.37-rc2 does not properly audit INET_DIAG bytecode, which allows loc… | |
| CVE-2010-3066 | linux | Medium | 4.9 | 2010-12-06 | The io_submit_one function in fs/aio.c in the Linux kernel before 2.6.23 allows local users to cause a denial of servic… | |
| CVE-2010-3849 | linux | Medium | 4.7 | 2010-12-30 | The econet_sendmsg function in net/econet/af_econet.c in the Linux kernel before 2.6.36.2, when an econet address is co… | |
| CVE-2010-3874 | linux | Medium | 4.0 | 2010-12-29 | Heap-based buffer overflow in the bcm_connect function in net/can/bcm.c (aka the Broadcast Manager) in the Controller A… | |
| CVE-2010-3850 | linux | Low | 2.1 | 2010-12-30 | The ec_dev_ioctl function in net/econet/af_econet.c in the Linux kernel before 2.6.36.2 does not require the CAP_NET_AD… | |
| CVE-2010-4158 | linux | Low | 2.1 | 2010-12-30 | The sk_run_filter function in net/core/filter.c in the Linux kernel before 2.6.36.2 does not check whether a certain me… |