CVE-2010-3848

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2.6.36.2

Description A stack-based buffer overflow issue exists in the econet sendmsg function, located in net/econet/af econet.c. This issue can be exploited by local users when an econet address is configured, allowing them to gain privileges by providing a large number of iovec structures.

Recommendations For versions prior to 2.6.36.2, update to version 2.6.36.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the econet sendmsg function until a patch is available.