CVE-2010-1451

Name: CVE-2010-1451
Creator: NVD / NIST
Published: 2010-05-07T18:30:01.61+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 0.52%

Last modified Jun 16, 2026

CVE-2010-1451 is a vulnerability of currently unknown severity. The TSB I-TLB load implementation in arch/sparc/kernel/tsb.S in the Linux kernel before 2.6.33 on the SPARC platform does not properly obtain the value of a certain _PAGE_EXEC_4U bit and consequently does not properly implement a non-executable stack, which makes it easier for context-dependent attackers to exploit stack-based buffer overflows via a crafted application.. EPSS estimates a 0.52% chance of exploitation in the next 30 days.

Description

The TSB I-TLB load implementation in arch/sparc/kernel/tsb.S in the Linux kernel before 2.6.33 on the SPARC platform does not properly obtain the value of a certain _PAGE_EXEC_4U bit and consequently does not properly implement a non-executable stack, which makes it easier for context-dependent attackers to exploit stack-based buffer overflows via a crafted application.

Metrics

EPSS Probability

0.52%

39.9th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-787

Affected Software

Vendor	Product	Versions
Linux	Linux Kernel	< 2.6.33
Debian	Debian Linux	5.0

References

http://marc.info/?l=linux-sparc&m=126662159602378&w=2Exploit, Mailing List, Patch, Third Party Advisory
http://marc.info/?l=linux-sparc&m=126662196902830&w=2Exploit, Mailing List, Third Party Advisory
http://secunia.com/advisories/39830Third Party Advisory
http://www.debian.org/security/2010/dsa-2053Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.33Broken Link
http://www.openwall.com/lists/oss-security/2010/02/24/1Exploit, Mailing List, Third Party Advisory
http://www.openwall.com/lists/oss-security/2010/05/05/2Mailing List, Third Party Advisory
http://marc.info/?l=linux-sparc&m=126662159602378&w=2Exploit, Mailing List, Patch, Third Party Advisory
http://marc.info/?l=linux-sparc&m=126662196902830&w=2Exploit, Mailing List, Third Party Advisory
http://secunia.com/advisories/39830Third Party Advisory
http://www.debian.org/security/2010/dsa-2053Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.33Broken Link
http://www.openwall.com/lists/oss-security/2010/02/24/1Exploit, Mailing List, Third Party Advisory
http://www.openwall.com/lists/oss-security/2010/05/05/2Mailing List, Third Party Advisory

Timeline

Published: May 7, 2010
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2010-1451?

How severe is CVE-2010-1451?

Severity scoring for CVE-2010-1451 is pending analysis. The EPSS model estimates a 0.52% probability of exploitation in the next 30 days.

How do I fix CVE-2010-1451?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2010-1451?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST