CVE-2008-2750 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-2750
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-2750

Description: The pppol2tp_recvmsg function in drivers/net/pppol2tp.c in the Linux kernel 2.6 before 2.6.26-rc6 allows remote attackers to cause a denial of service (kernel heap memory corruption and system crash) and possibly have unspecified other impact via a crafted PPPOL2TP packet that results in a large value for a certain length variable.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/43111 UBUNTU http://www.ubuntu.com/usn/usn-625-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00009.html ST 1020297 SAID Secunia Advisory: SA31107 Secunia Advisory: SA30920 Secunia Advisory: SA30719 Secunia Advisory: SA30901 Secunia Advisory: SA31202 MLIST http://www.openwall.com/lists/oss-security/2008/06/19/3 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:167 FEDORA CONFIRM http://kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.26-rc6 http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0207 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=6b6707a50c7598a83820077393f8823ab791abf8 BID 29747

Return to the previous page.