Unrated severityNVD Advisory· Published Sep 8, 2010· Updated Apr 29, 2026
CVE-2010-2495
CVE-2010-2495
Description
The pppol2tp_xmit function in drivers/net/pppol2tp.c in the L2TP implementation in the Linux kernel before 2.6.34 does not properly validate certain values associated with an interface, which allows attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via vectors related to a routing change.
Affected products
10cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*+ 5 more
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp1:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension:11:sp1:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp1:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- lists.opensuse.org/opensuse-security-announce/2010-08/msg00000.htmlnvdMailing ListThird Party Advisory
- www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34nvdRelease NotesVendor Advisory
- www.openwall.com/lists/oss-security/2010/06/23/3nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2010/07/04/2nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2010/07/04/3nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2010/07/06/11nvdMailing ListThird Party Advisory
- www.ubuntu.com/usn/USN-1000-1nvdThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party AdvisoryVendor Advisory
News mentions
0No linked articles in our index yet.