VDB
CVE-2010-4565
CVE-2010-4565
PUBLISHED
Reported by mitre · Published December 29, 2010
The bcm_connect function in net/can/bcm.c (aka the Broadcast Manager) in the Controller Area Network (CAN) implementation in the Linux kernel 2.6.36 and earlier creates a publicly accessible file with a filename containing a kernel memory address, which allows local users to obtain potentially sensitive information about kernel memory use by listing this filename.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a |
Exploit Intelligence
Timeline
- Dec 29, 2010 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- [oss-security] 20101220 CVE request: kernel: CAN information leak, 2nd attempt mailing-listx_refsource_MLIST
- [netdev] 20101102 Re: [SECURITY] CAN info leak/minor heap overflow mailing-listx_refsource_MLIST
- [netdev] 20101109 Re: [PATCH] Fix CAN info leak/minor heap overflow mailing-listx_refsource_MLIST
- [oss-security] 20101220 Re: CVE request: kernel: CAN information leak, 2nd attempt mailing-listx_refsource_MLIST
- [oss-security] 20101104 Re: CVE request: kernel: CAN information leak mailing-listx_refsource_MLIST
- x_refsource_MISC
- [netdev] 20101110 Re: [PATCH] Fix CAN info leak/minor heap overflow mailing-listx_refsource_MLIST
- [netdev] 20101102 [SECURITY] CAN info leak/minor heap overflow mailing-listx_refsource_MLIST
- 44661 vdb-entryx_refsource_BID
- MDVSA-2011:029 vendor-advisoryx_refsource_MANDRIVA
- [oss-security] 20101103 CVE request: kernel: CAN information leak mailing-listx_refsource_MLIST