CVE-2010-2803

N/A Unknown
Published: September 08, 2010 Modified: April 29, 2026
View on NVD

Description

The drm_ioctl function in drivers/gpu/drm/drm_drv.c in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 2.6.27.53, 2.6.32.x before 2.6.32.21, 2.6.34.x before 2.6.34.6, and 2.6.35.x before 2.6.35.4 allows local users to obtain potentially sensitive information from kernel memory by requesting a large memory-allocation amount.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://git.kernel.org/?p=linux/kernel/git/airlied/drm-2.6.git%3Ba=commit%3Bh=1b2f1489633888d4a06028315dc19d65768a1c05
Source: secalert@redhat.com
http://git.kernel.org/?p=linux/kernel/git/airlied/drm-2.6.git%3Ba=commit%3Bh=b9f0aee83335db1f3915f4e42a5e21b351740afd
Source: secalert@redhat.com
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b9f0aee83335db1f3915f4e42a5e21b351740afd
Source: secalert@redhat.com
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00004.html
Source: secalert@redhat.com
Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00005.html
Source: secalert@redhat.com
Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00000.html
Source: secalert@redhat.com
Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html
Source: secalert@redhat.com
Mailing List Third Party Advisory
http://secunia.com/advisories/41512
Source: secalert@redhat.com
Broken Link
http://www.debian.org/security/2010/dsa-2094
Source: secalert@redhat.com
Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.53
Source: secalert@redhat.com
Broken Link
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.21
Source: secalert@redhat.com
Broken Link
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34.6
Source: secalert@redhat.com
Broken Link
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35.4
Source: secalert@redhat.com
Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2010:198
Source: secalert@redhat.com
Broken Link
http://www.redhat.com/support/errata/RHSA-2010-0842.html
Source: secalert@redhat.com
Broken Link
http://www.vupen.com/english/advisories/2010/2430
Source: secalert@redhat.com
Broken Link
http://www.vupen.com/english/advisories/2011/0298
Source: secalert@redhat.com
Broken Link
https://bugzilla.redhat.com/show_bug.cgi?id=621435
Source: secalert@redhat.com
Exploit Issue Tracking Patch Third Party Advisory
http://git.kernel.org/?p=linux/kernel/git/airlied/drm-2.6.git%3Ba=commit%3Bh=1b2f1489633888d4a06028315dc19d65768a1c05
Source: af854a3a-2127-422b-91ae-364da2661108
http://git.kernel.org/?p=linux/kernel/git/airlied/drm-2.6.git%3Ba=commit%3Bh=b9f0aee83335db1f3915f4e42a5e21b351740afd
Source: af854a3a-2127-422b-91ae-364da2661108
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b9f0aee83335db1f3915f4e42a5e21b351740afd
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00004.html
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00005.html
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00000.html
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing List Third Party Advisory
http://secunia.com/advisories/41512
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://www.debian.org/security/2010/dsa-2094
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.53
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.21
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34.6
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35.4
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2010:198
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://www.redhat.com/support/errata/RHSA-2010-0842.html
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://www.vupen.com/english/advisories/2010/2430
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://www.vupen.com/english/advisories/2011/0298
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
https://bugzilla.redhat.com/show_bug.cgi?id=621435
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit Issue Tracking Patch Third Party Advisory

36 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.5%
37th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-200

Affected Vendors

debian linux suse opensuse

Related CVEs

CVE-2026-8662 3.3
CVE-2026-8658 6.0
CVE-2026-8666 7.7
CVE-2026-8665 7.7
CVE-2026-8664 6.0