CVE-2010-4164

Priority
Description
Multiple integer underflows in the x25_parse_facilities function in
net/x25/x25_facilities.c in the Linux kernel before 2.6.36.2 allow remote
attackers to cause a denial of service (system crash) via malformed X.25
(1) X25_FAC_CLASS_A, (2) X25_FAC_CLASS_B, (3) X25_FAC_CLASS_C, or (4)
X25_FAC_CLASS_D facility data, a different vulnerability than
CVE-2010-3873.
Ubuntu-Description
Dan Rosenberg discovered multiple flaws in the X.25 facilities parsing. If
a system was using X.25, a remote attacker could exploit this to crash the
system, leading to a denial of service.
Notes
Package
Upstream:released (2.6.37~rc2)
Package
Upstream:released (2.6.37~rc2)
Package
Upstream:released (2.6.37~rc2)
Package
Upstream:released (2.6.37~rc2)
Package
Upstream:released (2.6.37~rc2)
Package
Upstream:released (2.6.37~rc2)
Package
Upstream:released (2.6.37~rc2)
More Information

Updated: 2019-12-05 20:55:56 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)