Secunia
Login
|
|
CVE Reference: CVE-2010-3873 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2010-3873 |
|
|
Description: The X.25 implementation in the Linux kernel before 2.6.36.2 does not properly parse facilities, which allows remote attackers to cause a denial of service (heap memory corruption and panic) or possibly have unspecified other impact via malformed (1) X25_FAC_CALLING_AE or (2) X25_FAC_CALLED_AE data, related to net/x25/x25_facilities.c and net/x25/x25_in.c, a different vulnerability than CVE-2010-4164. |
|
|
CVE Status: Candidate |
|
|
References: SUSE http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00002.html SAID Secunia Advisory: SA43291 MLIST http://openwall.com/lists/oss-security/2010/11/04/3 http://openwall.com/lists/oss-security/2010/11/03/2 http://www.spinics.net/lists/netdev/msg145873.html http://www.spinics.net/lists/netdev/msg145786.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2011:029 DEBIAN http://www.debian.org/security/2010/dsa-2126 CONFIRM http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36.2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=a6331d6f9a4298173b413cf99a40cc86a9d92c37 |
|
| Return to the previous page. |
