SUSE Linux Security Vulnerability: CVE-2010-2240
Description
The do_anonymous_page function in mm/memory.c in the Linux kernel before 2.6.27.52, 2.6.32.x before 2.6.32.19, 2.6.34.x before 2.6.34.4, and 2.6.35.x before 2.6.35.2 does not properly separate the stack and the heap, which allows context-dependent attackers to execute arbitrary code by writing to the bottom page of a shared memory segment, as demonstrated by a memory-exhaustion attack against the X.Org X server.
Solution(s)
- suse-upgrade-kernel-bigsmp
- suse-upgrade-kernel-debug
- suse-upgrade-kernel-default
- suse-upgrade-kernel-iseries64
- suse-upgrade-kernel-kdump
- suse-upgrade-kernel-kdumppae
- suse-upgrade-kernel-ppc64
- suse-upgrade-kernel-smp
- suse-upgrade-kernel-source
- suse-upgrade-kernel-syms
- suse-upgrade-kernel-vmi
- suse-upgrade-kernel-vmipae
- suse-upgrade-kernel-xen
- suse-upgrade-kernel-xenpae
- suse-upgrade-xfree86-server
- suse-upgrade-xfree86-server-glx
- suse-upgrade-xorg-x11-server
- suse-upgrade-xorg-x11-server-extra
- suse-upgrade-xorg-x11-server-rdp
- suse-upgrade-xorg-x11-server-sdk
- suse-upgrade-xorg-x11-xvnc
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center