CVE-2010-3865

Priority
Medium
Description
Integer overflow in the rds_rdma_pages function in net/rds/rdma.c in the
Linux kernel allows local users to cause a denial of service (crash) and
possibly execute arbitrary code via a crafted iovec struct in a Reliable
Datagram Sockets (RDS) request, which triggers a buffer overflow.
Ubuntu-Description
Thomas Pollet discovered that the RDS network protocol did not check
certain iovec buffers. A local attacker could exploit this to crash the
system or possibly execute arbitrary code as the root user.
References
Assigned-to
smb
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
Package
Source: linux (LP Ubuntu Debian)
Upstream:released (2.6.37~rc1)
Patches:
Upstream:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=1b1f693d7ad6d193862dcb1118540a030c5e761f
Package
Upstream:released (2.6.37~rc1)
Package
Upstream:released (2.6.37~rc1)
More Information

Updated: 2018-06-26 04:38:18 UTC (commit 7799c934cca373482531a7b00e4dfe82302ceae5)