CVE-2010-2240

The do_anonymous_page function in mm/memory.c in the Linux kernel before 2.6.27.52, 2.6.32.x before 2.6.32.19, 2.6.34.x before 2.6.34.4, and 2.6.35.x before 2.6.35.2 does not properly separate the stack and the heap, which allows context-dependent attackers to execute arbitrary code by writing to the bottom page of a shared memory segment, as demonstrated by a memory-exhaustion attack against the X.Org X server.

Published: Sep 3, 2010
Updated: Apr 13, 2023
CVE: CVE-2010-2240
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-94

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	2.6.32.5	2.6.32.5.x
linux / linux_kernel	2.6.35.1	2.6.35.1.x
linux / linux_kernel	2.6.32.12	2.6.32.12.x
linux / linux_kernel	2.6.32.9	2.6.32.9.x
linux / linux_kernel	2.6.32	2.6.32.x
linux / linux_kernel	2.6.32.3	2.6.32.3.x
linux / linux_kernel	2.6.32.17	2.6.32.17.x
linux / linux_kernel	2.6.34.1	2.6.34.1.x
linux / linux_kernel	2.6.32.11	2.6.32.11.x
linux / linux_kernel	-	2.6.27.51.x
linux / linux_kernel	2.6.32.14	2.6.32.14.x
linux / linux_kernel	2.6.32.6	2.6.32.6.x
linux / linux_kernel	2.6.32.15	2.6.32.15.x
linux / linux_kernel	2.6.32.18	2.6.32.18.x
linux / linux_kernel	2.6.32.4	2.6.32.4.x
linux / linux_kernel	2.6.32.16	2.6.32.16.x
linux / linux_kernel	2.6.34.3	2.6.34.3.x
linux / linux_kernel	2.6.32.7	2.6.32.7.x
linux / linux_kernel	2.6.32.8	2.6.32.8.x
linux / linux_kernel	2.6.32.2	2.6.32.2.x
linux / linux_kernel	2.6.32.1	2.6.32.1.x
linux / linux_kernel	2.6.34.2	2.6.34.2.x
linux / linux_kernel	2.6.32.10	2.6.32.10.x
linux / linux_kernel	2.6.32.13	2.6.32.13.x

Vulnerability Database

289,871

CVE-2010-2240