Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2009-3620

The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command Engine (CCE) state initialization, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly gain privileges via unspecified ioctl calls.

Security Impact Summary

This vulnerability carries a HIGH severity rating with a CVSS v3.1 score of 7.8, requiring local system access to exploit with relatively low complexity without requiring user interaction requiring only low-level privileges . The vulnerability impacts confidentiality (data exposure), integrity (unauthorized modifications), and availability (service disruption) for affected systems. Impacting 8 products from linux, from fedoraproject, from canonical and 5 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

Originally identified in 2009, this vulnerability predates many modern security frameworks and practices. The vulnerability landscape of that era was characterized by different threat models and less mature defense mechanisms compared to contemporary standards.

Published

2009-10-22T16:00:00.577

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:N/I:N/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

6.9

Weaknesses

Type: Primary
CWE-476
CWE-908

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	linux	linux_kernel	< 2.6.31.1	Yes
Operating System	fedoraproject	fedora	10	Yes
Operating System	canonical	ubuntu_linux	6.06	Yes
Operating System	canonical	ubuntu_linux	8.04	Yes
Operating System	canonical	ubuntu_linux	8.10	Yes
Operating System	canonical	ubuntu_linux	9.04	Yes
Operating System	canonical	ubuntu_linux	9.10	Yes
Application	redhat	mrg_realtime	1.0	Yes
Application	suse	linux_enterprise_debuginfo	10	Yes
Application	suse	linux_enterprise_debuginfo	10	Yes
Operating System	opensuse	opensuse	11.0	Yes
Operating System	suse	linux_enterprise_desktop	10	Yes
Operating System	suse	linux_enterprise_desktop	10	Yes
Operating System	suse	linux_enterprise_server	8	Yes
Operating System	suse	linux_enterprise_server	10	Yes
Operating System	suse	linux_enterprise_server	10	Yes

References

http://article.gmane.org/gmane.linux.kernel/892259 Broken Link ([email protected])
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7dc482dfeeeefcfd000d4271c4626937406756d7 Broken Link ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00002.html Mailing List ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00005.html Mailing List ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html Mailing List ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00007.html Mailing List ([email protected])
http://lists.vmware.com/pipermail/security-announce/2010/000082.html Broken Link ([email protected])
http://secunia.com/advisories/36707 Broken Link, Vendor Advisory ([email protected])
http://secunia.com/advisories/37909 Broken Link ([email protected])
http://secunia.com/advisories/38794 Broken Link ([email protected])
http://secunia.com/advisories/38834 Broken Link ([email protected])
http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.31-git11.log Broken Link, Patch ([email protected])
http://www.mandriva.com/security/advisories?name=MDVSA-2010:088 Broken Link ([email protected])
http://www.mandriva.com/security/advisories?name=MDVSA-2010:198 Broken Link ([email protected])
http://www.openwall.com/lists/oss-security/2009/10/19/1 Mailing List, Patch ([email protected])
http://www.openwall.com/lists/oss-security/2009/10/19/3 Mailing List, Patch ([email protected])
http://www.redhat.com/support/errata/RHSA-2009-1670.html Broken Link ([email protected])
http://www.redhat.com/support/errata/RHSA-2009-1671.html Broken Link ([email protected])
http://www.redhat.com/support/errata/RHSA-2010-0882.html Broken Link ([email protected])
http://www.securityfocus.com/bid/36824 Broken Link, Third Party Advisory, VDB Entry ([email protected])
http://www.ubuntu.com/usn/usn-864-1 Third Party Advisory ([email protected])
http://www.vupen.com/english/advisories/2010/0528 Broken Link ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=529597 Issue Tracking ([email protected])
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6763 Broken Link ([email protected])
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9891 Broken Link ([email protected])
https://rhn.redhat.com/errata/RHSA-2009-1540.html Third Party Advisory ([email protected])
https://www.redhat.com/archives/fedora-package-announce/2009-November/msg00190.html Mailing List, Release Notes ([email protected])
http://article.gmane.org/gmane.linux.kernel/892259 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7dc482dfeeeefcfd000d4271c4626937406756d7 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00002.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00005.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00007.html Mailing List (af854a3a-2127-422b-91ae-364da2661108)
http://lists.vmware.com/pipermail/security-announce/2010/000082.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/36707 Broken Link, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/37909 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/38794 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/38834 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.31-git11.log Broken Link, Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2010:088 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2010:198 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2009/10/19/1 Mailing List, Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2009/10/19/3 Mailing List, Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2009-1670.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2009-1671.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2010-0882.html Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/36824 Broken Link, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/usn-864-1 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2010/0528 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=529597 Issue Tracking (af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6763 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9891 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://rhn.redhat.com/errata/RHSA-2009-1540.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2009-November/msg00190.html Mailing List, Release Notes (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For linux's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.