The pppol2tp_xmit function in drivers/net/pppol2tp.c in the L2TP implementation in the Linux kernel before 2.6.34 does not properly validate certain values associated with an interface, which allows attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via vectors related to a routing change.
Software | From | Fixed in |
---|---|---|
linux / linux_kernel | - | 2.6.34 |
canonical / ubuntu_linux | 10.04 | 10.04.x |
canonical / ubuntu_linux | 10.10 | 10.10.x |
canonical / ubuntu_linux | 6.06 | 6.06.x |
canonical / ubuntu_linux | 8.04 | 8.04.x |
canonical / ubuntu_linux | 9.04 | 9.04.x |
canonical / ubuntu_linux | 9.10 | 9.10.x |
suse / suse_linux_enterprise_server | 11-sp1 | 11-sp1.x |
suse / suse_linux_enterprise_desktop | 11-sp1 | 11-sp1.x |
suse / suse_linux_enterprise_high_availability_extension | 11-sp1 | 11-sp1.x |