CVE-2010-2959

Exp

Integer overflow in net/can/bcm.c in the Controller Area Network (CAN) implementation in the Linux kernel before 2.6.27.53, 2.6.32.x before 2.6.32.21, 2.6.34.x before 2.6.34.6, and 2.6.35.x before 2.6.35.4 allows attackers to execute arbitrary code or cause a denial of service (system crash) via crafted CAN traffic.

Published: 2010-09-08 Last update: 2026-06-16 Assigner: [email protected] Source: [email protected]

Conclusion & alert: CVE-2010-2959 is rated High Exploit Risk (78.2/100): CVSS High severity, with medium exploitation likelihood (EPSS 3.78%). Core evidence: 3 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +3.41% over the last day, indicating growing attacker interest. Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Public exploit references (Exploit-DB) for CVE-2010-2959

EDB-ID Source Kind Published Link
14814 exploit_db edb 2010-08-27 Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2010-2959

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-15 0.37% 3.78% +3.41%
2 2026-04-17 0.33% 0.37% +0.03%
3 2026-04-09 0.33%

Full EPSS history (29 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2010-2959

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
7.2 2.0 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C Click to expand
Access vector (AV:L)
Requires local access to the target system.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:C)
Complete confidentiality impact.
Integrity impact (I:C)
Complete integrity impact.
Availability impact (A:C)
Complete availability impact.
3.9 10.0 [email protected]

Weakness enumeration for CVE-2010-2959

OS Trackers for CVE-2010-2959

vendor priority summary link
redhat high https://access.redhat.com/security/cve/CVE-2010-2959
suse medium CVE-2010-2959 severity moderate: SUSE including 118 source package names (brocade-bna-kmp-rt-2.1.0.0_2.6.33.7.2_rt30_0.3-0.2.9, btrfs-kmp-default-0_2.6.32.19_0.2-0.3.15, …), 139 product×package rows across 8 product lines (SUSE Linux Enterprise Real Time 11 SP1, SUSE Linux Enterprise Server 11, … (8 product lines)): Fixed 139. https://www.suse.com/security/cve/CVE-2010-2959/
ubuntu high CVE-2010-2959 high priority: Ubuntu including 5 source packages (linux, linux-ec2, linux-fsl-imx51, linux-mvl-dove, linux-source-2.6.15), 32 status rows across 7 suites (dapper, hardy, jaunty, karmic, lucid, maverick, upstream): released 15, DNE 13, not-affected 3, ignored 1. https://ubuntu.com/security/CVE-2010-2959

Affected software / configurations for CVE-2010-2959

Vendor Product Version Raw CPE
linux linux_kernel < 2.6.27.53 cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linux linux_kernel >= 2.6.32, < 2.6.32.21 cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linux linux_kernel >= 2.6.34, < 2.6.34.6 cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linux linux_kernel >= 2.6.35, < 2.6.35.4 cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
fedoraproject fedora 12 cpe:2.3:o:fedoraproject:fedora:12:*:*:*:*:*:*:*
debian debian_linux 5.0 cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
opensuse opensuse 11.3 cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*
suse linux_enterprise_desktop 11 cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1:*:*:*:*:*:*
suse linux_enterprise_high_availability_extension 11 cpe:2.3:o:suse:linux_enterprise_high_availability_extension:11:sp1:*:*:*:*:*:*
suse linux_enterprise_real_time 11 cpe:2.3:o:suse:linux_enterprise_real_time:11:sp1:*:*:*:*:*:*
suse linux_enterprise_server 11 cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:*:*:*

References for CVE-2010-2959

URL Tags
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=5b75c4973ce779520b9d1e392483207d6f842cde
http://jon.oberheide.org/files/i-can-haz-modharden.c Exploit Mailing List Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-September/046947.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00004.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00005.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html Mailing List Third Party Advisory
http://secunia.com/advisories/41512 Broken Link
http://www.debian.org/security/2010/dsa-2094 Third Party Advisory
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.53 Broken Link
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.21 Broken Link
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34.6 Broken Link
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35.4 Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2010:198 Broken Link
http://www.openwall.com/lists/oss-security/2010/08/20/2 Mailing List Third Party Advisory
http://www.securityfocus.com/bid/42585 Exploit Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2010/2430 Broken Link
http://www.vupen.com/english/advisories/2011/0298 Broken Link
https://bugzilla.redhat.com/show_bug.cgi?id=625699 Issue Tracking Patch Third Party Advisory
cvelogic Threat Intelligence