CVE-2011-0636

{"id": "CVE-2011-0636", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-01-22T22:00:07.053", "references": [{"url": "http://classic.chem.msu.su/cgi-bin/ceilidh.exe/gran/gamess/forum/?C35e9ea936bHW-7675-1380-00.htm", "source": "cve@mitre.org"}, {"url": "http://classic.chem.msu.su/cgi-bin/ceilidh.exe/gran/gamess/forum/?C35e9ea936bHW-7676-1022+00.htm", "source": "cve@mitre.org"}, {"url": "http://classic.chem.msu.su/cgi-bin/ceilidh.exe/gran/gamess/forum/?C35e9ea936bHW-7677-1391+00.htm", "source": "cve@mitre.org"}, {"url": "http://classic.chem.msu.su/cgi-bin/ceilidh.exe/gran/gamess/forum/?C35e9ea936bHW-7681-487+00.htm", "source": "cve@mitre.org"}, {"url": "http://forums.nvidia.com/index.php?showtopic=190303", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/70420", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/42859", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/515591/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/516121/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/45717", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1024962", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64710", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "The (1) cudaHostAlloc and (2) cuMemHostAlloc functions in the NVIDIA CUDA Toolkit 3.2 developer drivers for Linux 260.19.26, and possibly other versions, do not initialize pinned memory, which allows local users to read potentially sensitive memory, such as file fragments during read or write operations."}, {"lang": "es", "value": "Las funciones (1) cudaHostAlloc y (2) cuMemHostAlloc de los controladores de desarrollador NVIDIA CUDA Toolkit 3.2 para Linux 260.19.26, y posiblemente otras versiones, no inicializan la memoria de tipo \"pinned\" (que nunca se mueve a almacenamiento secundario), lo que permite a usuarios locales leer datos de memoria como fragmentos de archivos durante las operaciones de lectura o escritura."}], "lastModified": "2018-10-09T19:29:35.330", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:nvidia:cuda_toolkit:3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D847561A-6054-405E-8AF8-4C10C2B62F65"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}