CVE-2010-3874

CVSS v2.0 4 (Medium)

EPSS 0.04 % (11^th)

Affected Products 7

Advisories 12

Heap-based buffer overflow in the bcm_connect function in net/can/bcm.c (aka the Broadcast Manager) in the Controller Area Network (CAN) implementation in the Linux kernel before 2.6.36.2 on 64-bit platforms might allow local users to cause a denial of service (memory corruption) via a connect operation.

Weaknesses

CWE-787: Out-of-bounds Write

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2010-12-29 18:00:02
(13 years ago)
Updated Date: 2023-02-13 04:27:12
(19 months ago)

Affected Products

Suse

Configuration #1

		CPE23	From	Up To
	Linux Kernel on X64 prior 2.6.36.2 version	cpe:2.3:o:linux:linux_kernel::::::*:x64		< 2.6.36.2

Configuration #2

		CPE23	From	Up To
	Fedoraproject Fedora 13	cpe:2.3:o:fedoraproject:fedora:13

Configuration #3

		CPE23	From	Up To
	Opensuse 11.2	cpe:2.3:o:opensuse:opensuse:11.2
	Opensuse 11.3	cpe:2.3:o:opensuse:opensuse:11.3
	Suse Linux Enterprise Desktop 11 SP1	cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1
	Suse Linux Enterprise Real Time Extension 11 SP1	cpe:2.3:o:suse:linux_enterprise_real_time_extension:11:sp1
	Suse Linux Enterprise Server 11 SP1	cpe:2.3:o:suse:linux_enterprise_server:11:sp1

Configuration #4

		CPE23	From	Up To
	Debian Linux 5.0	cpe:2.3:o:debian:debian_linux:5.0

Weaknesses

Affected Products

Debian

Fedoraproject

Linux

Opensuse

Suse

Configuration #1

Configuration #2

Configuration #3

Configuration #4