CVE-2009-4410
Last modified
CVE-2009-4410 is a vulnerability of currently unknown severity. The fuse_ioctl_copy_user function in the ioctl handler in fs/fuse/file.c in the Linux kernel 2.6.29-rc1 through 2.6.30.y uses the wrong variable in an argument to the kunmap function, which allows local users to cause a denial of service (panic) via unknown vectors.. EPSS estimates a 0.36% chance of exploitation in the next 30 days.
Description
The fuse_ioctl_copy_user function in the ioctl handler in fs/fuse/file.c in the Linux kernel 2.6.29-rc1 through 2.6.30.y uses the wrong variable in an argument to the kunmap function, which allows local users to cause a denial of service (panic) via unknown vectors.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | 2.6.29 |
| Linux | Linux Kernel | 2.6.29.1 |
| Linux | Linux Kernel | 2.6.29.2 |
| Linux | Linux Kernel | 2.6.29.3 |
| Linux | Linux Kernel | 2.6.29.4 |
| Linux | Linux Kernel | 2.6.29.5 |
| Linux | Linux Kernel | 2.6.29.6 |
| Linux | Linux Kernel | 2.6.29.rc1 |
| Linux | Linux Kernel | 2.6.29.rc2 |
| Linux | Linux Kernel | 2.6.29.rc2-git1 |
| Linux | Linux Kernel | 2.6.30 |
| Linux | Linux Kernel | 2.6.30.1 |
| Linux | Linux Kernel | 2.6.30.2 |
| Linux | Linux Kernel | 2.6.30.3 |
| Linux | Linux Kernel | 2.6.30.4 |
| Linux | Linux Kernel | 2.6.30.5 |
| Linux | Linux Kernel | 2.6.30.6 |
| Linux | Linux Kernel | 2.6.30.7 |
| Linux | Linux Kernel | 2.6.30.8 |
| Linux | Linux Kernel | 2.6.30.9 |
| Linux | Linux Kernel | 2.6.30.y |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2009-4410?
How severe is CVE-2009-4410?
How do I fix CVE-2009-4410?
Are you affected by CVE-2009-4410?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST