7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.003 Low
EPSS
Percentile
67.5%
Integer overflow in net/can/bcm.c in the Controller Area Network (CAN)
implementation in the Linux kernel before 2.6.27.53, 2.6.32.x before
2.6.32.21, 2.6.34.x before 2.6.34.6, and 2.6.35.x before 2.6.35.4 allows
attackers to execute arbitrary code or cause a denial of service (system
crash) via crafted CAN traffic.
Author | Note |
---|---|
smb | File bcm.c does not exist in Hardy and before. |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 9.04 | noarch | linux | < 2.6.28-19.64 | UNKNOWN |
ubuntu | 9.10 | noarch | linux | < 2.6.31-22.63 | UNKNOWN |
ubuntu | 10.04 | noarch | linux | < 2.6.32-24.41 | UNKNOWN |
ubuntu | 10.10 | noarch | linux | < 2.6.35-18.24 | UNKNOWN |
ubuntu | 9.10 | noarch | linux-ec2 | < 2.6.31-307.17 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-ec2 | < 2.6.32-308.15 | UNKNOWN |
ubuntu | 9.10 | noarch | linux-fsl-imx51 | < 2.6.31-112.30 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-fsl-imx51 | < 2.6.31-608.19 | UNKNOWN |
ubuntu | 9.10 | noarch | linux-mvl-dove | < 2.6.31-214.30 | UNKNOWN |
ubuntu | 10.04 | noarch | linux-mvl-dove | < 2.6.32-208.24 | UNKNOWN |