Back to search
CVE-2008-2750
Published: Jun 18, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
The pppol2tp_recvmsg function in drivers/net/pppol2tp.c in the Linux kernel 2.6 before 2.6.26-rc6 allows remote attackers to cause a denial of service (kernel heap memory corruption and system crash) and possibly have unspecified other impact via a crafted PPPOL2TP packet that results in a large value for a certain length variable.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0207
x_refsource_CONFIRM
29747
vdb-entry
x_refsource_BID
MDVSA-2008:167
vendor-advisory
x_refsource_MANDRIVA
30901
third-party-advisory
x_refsource_SECUNIA
http://kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.26-rc6
x_refsource_CONFIRM
[oss-security] 20080619 Re: query on a pppol2tp_recvmsg() fix - security relevant?
mailing-list
x_refsource_MLIST
30920
third-party-advisory
x_refsource_SECUNIA
linux-kernel-pppol2tprecvmsg-dos(43111)
vdb-entry
x_refsource_XF
31107
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2008:037
vendor-advisory
x_refsource_SUSE
FEDORA-2008-5893
vendor-advisory
x_refsource_FEDORA
ADV-2008-1854
vdb-entry
x_refsource_VUPEN
https://issues.rpath.com/browse/RPL-2629
x_refsource_CONFIRM
31202
third-party-advisory
x_refsource_SECUNIA
USN-625-1
vendor-advisory
x_refsource_UBUNTU
30719
third-party-advisory
x_refsource_SECUNIA
1020297
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now