Integer Overflow in rds_rdma_pages Function in Linux Kernel Allows for Denial of Service and Arbitrary Code Execution

Integer Overflow in rds_rdma_pages Function in Linux Kernel Allows for Denial of Service and Arbitrary Code Execution

CVE-2010-3865 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Integer overflow in the rds_rdma_pages function in net/rds/rdma.c in the Linux kernel allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted iovec struct in a Reliable Datagram Sockets (RDS) request, which triggers a buffer overflow.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.