CVE-2010-5332

MEDIUM

Linux kernel <2.6.37 - Buffer Overflow

Title source: llm
STIX 2.1

Description

In the Linux kernel before 2.6.37, an out of bounds array access happened in drivers/net/mlx4/port.c. When searching for a free entry in either mlx4_register_vlan() or mlx4_register_mac(), and there is no free entry, the loop terminates without updating the local variable free thus causing out of array bounds access.

Scores

CVSS v3 5.6
EPSS 0.0039
EPSS Percentile 30.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H

Details

CWE
CWE-119
Status published
Products (1)
linux/linux_kernel < 2.6.37
Published Jul 27, 2019
Tracked Since Feb 18, 2026