New Search

ESX third party update for Service Console kernel

oval:org.mitre.oval:def:13247

The do_anonymous_page function in mm/memory.c in the Linux kernel before 2.6.27.52 2.6.32.x before 2.6.32.19 2.6.34.x before 2.6.34.4 and 2.6.35.x before 2.6.35.2 does not properly separate the stack and the heap which allows context-dependent attackers to execute arbitrary code by writing to the bottom page of a shared memory segment as demonstrated by a memory-exhaustion attack against the X.Org X server.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • VMWare ESX Server 3.5
Class:
vulnerability
Reference(s):
  • CVE-2010-2240
Product(s):