CVE-2010-1084

Linux kernel <2.6.34 - Memory Corruption

Title source: llm
STIX 2.1

Description

Linux kernel 2.6.18 through 2.6.33, and possibly other versions, allows remote attackers to cause a denial of service (memory corruption) via a large number of Bluetooth sockets, related to the size of sysfs files in (1) net/bluetooth/l2cap.c, (2) net/bluetooth/rfcomm/core.c, (3) net/bluetooth/rfcomm/sock.c, and (4) net/bluetooth/sco.c.

References (11)

Core 11
Core References
Third Party Advisory x_refsource_misc
http://security-tracker.debian.org/tracker/CVE-2010-1084
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0610.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/38898
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/43315
Patch mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2010/03/23/1
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2010/dsa-2053
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/516397/100/0/threaded
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/39830

Scores

EPSS 0.0298
EPSS Percentile 85.7%

Details

CWE
CWE-119
Status published
Products (50)
linux/linux_kernel 2.6.18
linux/linux_kernel 2.6.18.1
linux/linux_kernel 2.6.18.2
linux/linux_kernel 2.6.18.3
linux/linux_kernel 2.6.18.4
linux/linux_kernel 2.6.18.5
linux/linux_kernel 2.6.18.6
linux/linux_kernel 2.6.18.7
linux/linux_kernel 2.6.18.8
linux/linux_kernel 2.6.19
... and 40 more
Published Apr 06, 2010
Tracked Since Feb 18, 2026