CVE-2010-2959
published 2010-09-08CVE-2010-2959: Integer overflow in net/can/bcm.c in the Controller Area Network (CAN) implementation in the Linux kernel before 2.6.27.53, 2.6.32.x before 2.6.32.21, 2.6.34.x…
high7.2CVSS 3.1
AVLACLAuNCCICAC
EXPLOIT
Integer overflow in net/can/bcm.c in the Controller Area Network (CAN) implementation in the Linux kernel before 2.6.27.53, 2.6.32.x before 2.6.32.21, 2.6.34.x before 2.6.34.6, and 2.6.35.x before 2.6.35.4 allows attackers to execute arbitrary code or cause a denial of service (system crash) via crafted CAN traffic.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| fedoraproject | fedora | — | — |
| linux | linux_kernel | < 2.6.27.53 | 2.6.27.53 |
| linux | linux_kernel | >= 2.6.32 < 2.6.32.21 | 2.6.32.21 |
| linux | linux_kernel | >= 2.6.34 < 2.6.34.6 | 2.6.34.6 |
| linux | linux_kernel | >= 2.6.35 < 2.6.35.4 | 2.6.35.4 |
| opensuse | opensuse | — | — |
| suse | linux_enterprise_desktop | — | — |
| suse | linux_enterprise_high_availability_extension | — | — |
| suse | linux_enterprise_real_time | — | — |
| suse | linux_enterprise_server | — | — |
CVSS provenance
nvd7.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
vulncheck7.2HIGH