VYPR
Unrated severityNVD Advisory· Published Oct 4, 2010· Updated Jun 16, 2026

CVE-2010-3437

CVE-2010-3437

Description

Integer signedness error in the pkt_find_dev_from_minor function in drivers/block/pktcdvd.c in the Linux kernel before 2.6.36-rc6 allows local users to obtain sensitive information from kernel memory or cause a denial of service (invalid pointer dereference and system crash) via a crafted index value in a PKT_CTRL_CMD_STATUS ioctl call.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

24
  • cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*+ 5 more
    • cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
  • Linux/Kernel8 versions
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: <2.6.36
    • cpe:2.3:o:linux:linux_kernel:2.6.36:-:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36:rc1:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36:rc2:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36:rc3:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36:rc4:*:*:*:*:*:*
    • cpe:2.3:o:linux:linux_kernel:2.6.36:rc5:*:*:*:*:*:*
    • (no CPE)range: <2.6.36-rc6
  • OpenSUSE/openSUSE2 versions
    cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
    • cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_desktop:10:sp3:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:suse:linux_enterprise_desktop:10:sp3:*:*:*:*:*:*
    • cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_real_time_extension:11:sp1:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:*:*:*:*
    • cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:*:*:*
    • cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp3:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

24

News mentions

0

No linked articles in our index yet.