Back to search
CVE-2010-2495
Published: Sep 8, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
The pppol2tp_xmit function in drivers/net/pppol2tp.c in the L2TP implementation in the Linux kernel before 2.6.34 does not properly validate certain values associated with an interface, which allows attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via vectors related to a routing change.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20100623 kernel: l2tp: Fix oops in pppol2tp_xmit
mailing-list
x_refsource_MLIST
USN-1000-1
vendor-advisory
x_refsource_UBUNTU
[oss-security] 20100704 Re: CVE Request: kernel: l2tp: Fix oops in pppol2tp_xmit
mailing-list
x_refsource_MLIST
SUSE-SA:2010:033
vendor-advisory
x_refsource_SUSE
https://bugzilla.redhat.com/show_bug.cgi?id=607054
x_refsource_CONFIRM
[oss-security] 20100706 Re: CVE Request: kernel: l2tp: Fix oops in pppol2tp_xmit
mailing-list
x_refsource_MLIST
[oss-security] 20100704 Re: kernel: l2tp: Fix oops in pppol2tp_xmit
mailing-list
x_refsource_MLIST
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now