CVE-2009-2137
Severity CVSS v4.0:
Pending analysis
Type:
CWE-399
Resource Management Errors
Publication date:
19/06/2009
Last modified:
09/04/2025
Description
Memory leak in the Ultra-SPARC T2 crypto provider device driver (aka n2cp) in Sun Solaris 10, and OpenSolaris snv_54 through snv_112, allows context-dependent attackers to cause a denial of service (memory consumption) via unspecified vectors related to a large keylen value.
Impact
Base Score 2.0
7.80
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:sun:opensolaris:snv_54:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_55:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_56:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_57:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_58:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_59:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_60:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_61:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_62:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_63:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_64:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_65:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_66:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_67:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:opensolaris:snv_68:*:sparc:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://osvdb.org/55234
- http://secunia.com/advisories/35403
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-140386-03-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-258828-1
- http://osvdb.org/55234
- http://secunia.com/advisories/35403
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-140386-03-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-258828-1