Out of Bounds Array Access in mlx4_register_vlan() and mlx4_register_mac() Functions

Out of Bounds Array Access in mlx4_register_vlan() and mlx4_register_mac() Functions

CVE-2010-5332 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H

In the Linux kernel before 2.6.37, an out of bounds array access happened in drivers/net/mlx4/port.c. When searching for a free entry in either mlx4_register_vlan() or mlx4_register_mac(), and there is no free entry, the loop terminates without updating the local variable free thus causing out of array bounds access.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.