PT-2010-4049 · Linux · Linux Kernel
Eugene Teo
·
Published
2010-09-29
·
Updated
2023-02-13
·
CVE-2010-2478
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 2.6.33.7 on 32-bit platforms
Description
The issue is related to an integer overflow in the
ethtool get rxnfc function, which can be triggered by a large info.rule cnt value in an ETHTOOL GRXCLSRLALL ethtool command, potentially causing a denial of service or other unspecified impacts.Recommendations
For Linux kernel versions prior to 2.6.33.7 on 32-bit platforms, update to version 2.6.33.7 or later to resolve the issue.
Fix
Integer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Linux Kernel