Vulnerability Name:

CVE-2009-4410 (CCN-55025)

Assigned:2009-12-23
Published:2009-12-23
Updated:2012-03-19
Summary:The fuse_ioctl_copy_user function in the ioctl handler in fs/fuse/file.c in the Linux kernel 2.6.29-rc1 through 2.6.30.y uses the wrong variable in an argument to the kunmap function, which allows local users to cause a denial of service (panic) via unknown vectors.
CVSS v3 Severity:6.2 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)
3.7 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
4.9 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Data Manipulation
References:Source: MITRE
Type: CNA
CVE-2009-4410

Source: OSVDB
Type: UNKNOWN
61335

Source: SECUNIA
Type: UNKNOWN
37928

Source: CCN
Type: The Linux Kernel Archives Web site
The Linux Kernel Archives

Source: MLIST
Type: UNKNOWN
[oss-security] 20091223 CVE request - kernel: fuse_ioctl_copy_user() dos

Source: CCN
Type: OSVDB ID: 61335
Linux Kernel fs/fuse/file.c IOCTL Handler fuse_ioctl_copy_user Function Local DoS

Source: BID
Type: UNKNOWN
37453

Source: CCN
Type: BID-37453
Linux Kernel 'fuse_ioctl_copy_user()' Local Denial of Service Vulnerability

Source: CCN
Type: Red Hat Bugzilla Bug 549400
kernel: fuse_ioctl_copy_user() dos

Source: CONFIRM
Type: UNKNOWN
https://bugzilla.redhat.com/show_bug.cgi?id=549400

Source: XF
Type: UNKNOWN
linux-kernel-fuse-dos(55025)

Source: FEDORA
Type: UNKNOWN
FEDORA-2009-13694

Vulnerable Configuration:Configuration 1:
  • cpe:/o:linux:linux_kernel:2.6.29:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29:git1:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29:rc1:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29:rc2:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29:rc2_git7:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29:rc8-kk:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29.1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29.2:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29.3:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29.4:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29.5:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29.6:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29.rc1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29.rc2:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.29.rc2-git1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30:-:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30:rc1:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30:rc2:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30:rc3:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30:rc4:x86_32:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30:rc5:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30:rc6:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30:rc7-git6:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30.1:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30.2:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30.3:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30.4:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30.5:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30.6:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30.7:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30.8:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30.9:*:*:*:*:*:*:*
  • OR cpe:/o:linux:linux_kernel:2.6.30.y:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/o:linux:linux_kernel:2.6.30:-:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20094410
    V
    CVE-2009-4410
    2015-11-16
    BACK
    linux linux kernel 2.6.29
    linux linux kernel 2.6.29 git1
    linux linux kernel 2.6.29 rc1
    linux linux kernel 2.6.29 rc2
    linux linux kernel 2.6.29 rc2_git7
    linux linux kernel 2.6.29 rc8-kk
    linux linux kernel 2.6.29.1
    linux linux kernel 2.6.29.2
    linux linux kernel 2.6.29.3
    linux linux kernel 2.6.29.4
    linux linux kernel 2.6.29.5
    linux linux kernel 2.6.29.6
    linux linux kernel 2.6.29.rc1
    linux linux kernel 2.6.29.rc2
    linux linux kernel 2.6.29.rc2-git1
    linux linux kernel 2.6.30
    linux linux kernel 2.6.30 rc1
    linux linux kernel 2.6.30 rc2
    linux linux kernel 2.6.30 rc3
    linux linux kernel 2.6.30 rc4
    linux linux kernel 2.6.30 rc5
    linux linux kernel 2.6.30 rc6
    linux linux kernel 2.6.30 rc7-git6
    linux linux kernel 2.6.30.1
    linux linux kernel 2.6.30.2
    linux linux kernel 2.6.30.3
    linux linux kernel 2.6.30.4
    linux linux kernel 2.6.30.5
    linux linux kernel 2.6.30.6
    linux linux kernel 2.6.30.7
    linux linux kernel 2.6.30.8
    linux linux kernel 2.6.30.9
    linux linux kernel 2.6.30.y
    linux linux kernel 2.6.30