*** This bug is a security vulnerability *** Public security bug reported:
CVE-2008-2750 description: "The pppol2tp_recvmsg function in drivers/net/pppol2tp.c in the Linux kernel 2.6 before 2.6.26-rc6 allows remote attackers to cause a denial of service (kernel heap memory corruption and system crash) and possibly have unspecified other impact via a crafted PPPOL2TP packet that results in a large value for a certain length variable." http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2750 ** Affects: linux (Ubuntu) Importance: Undecided Status: New ** Affects: linux-source-2.6.15 (Ubuntu) Importance: Undecided Status: New ** Affects: linux-source-2.6.20 (Ubuntu) Importance: Undecided Status: New ** Affects: linux-source-2.6.22 (Ubuntu) Importance: Undecided Status: New ** Visibility changed to: Public ** Also affects: linux-source-2.6.22 (Ubuntu) Importance: Undecided Status: New ** Also affects: linux-source-2.6.20 (Ubuntu) Importance: Undecided Status: New ** Also affects: linux-source-2.6.15 (Ubuntu) Importance: Undecided Status: New -- [CVE-2008-2750] Remote vulnerability in pppol2tp_recvmsg() in Linux https://bugs.launchpad.net/bugs/241419 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
