Upstream information

CVE-2010-2495 at MITRE

Description

The pppol2tp_xmit function in drivers/net/pppol2tp.c in the L2TP implementation in the Linux kernel before 2.6.34 does not properly validate certain values associated with an interface, which allows attackers to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact via vectors related to a routing change.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v2 Scores
  National Vulnerability Database
Base Score 10
Vector AV:N/AC:L/Au:N/C:C/I:C/A:C
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact Complete
Integrity Impact Complete
Availability Impact Complete
SUSE Bugzilla entry: 616612 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.13_0.5-0.3.9
  • btrfs-kmp-pae >= 0_2.6.32.59_0.7-0.3.107
  • btrfs-kmp-xen >= 0_2.6.32.59_0.7-0.3.107
  • ext4dev-kmp-default >= 0_2.6.32.13_0.5-7.3.9
  • ext4dev-kmp-pae >= 0_2.6.32.59_0.7-7.9.74
  • ext4dev-kmp-ppc64 >= 0_2.6.32.13_0.5-7.3.9
  • ext4dev-kmp-trace >= 0_2.6.32.59_0.7-7.9.74
  • ext4dev-kmp-xen >= 0_2.6.32.59_0.7-7.9.74
  • hyper-v-kmp-default >= 0_2.6.32.59_0.7-0.18.20
  • hyper-v-kmp-pae >= 0_2.6.32.59_0.7-0.18.20
  • hyper-v-kmp-trace >= 0_2.6.32.59_0.7-0.18.20
  • iscsitarget-kmp-default >= 1.4.19_2.6.32.19_0.3-0.7.8
  • kernel-default >= 2.6.32.13-0.5.1
  • kernel-default-base >= 2.6.32.13-0.5.1
  • kernel-default-devel >= 2.6.32.13-0.5.1
  • kernel-default-man >= 2.6.32.59-0.7.1
  • kernel-ec2 >= 2.6.32.59-0.7.1
  • kernel-ec2-base >= 2.6.32.59-0.7.1
  • kernel-ec2-devel >= 2.6.32.59-0.7.1
  • kernel-pae >= 2.6.32.59-0.7.1
  • kernel-pae-base >= 2.6.32.59-0.7.1
  • kernel-pae-devel >= 2.6.32.59-0.7.1
  • kernel-ppc64 >= 2.6.32.13-0.5.1
  • kernel-ppc64-base >= 2.6.32.13-0.5.1
  • kernel-ppc64-devel >= 2.6.32.13-0.5.1
  • kernel-source >= 2.6.32.13-0.5.1
  • kernel-syms >= 2.6.32.13-0.5.1
  • kernel-trace >= 2.6.32.13-0.5.1
  • kernel-trace-base >= 2.6.32.13-0.5.1
  • kernel-trace-devel >= 2.6.32.13-0.5.1
  • kernel-xen >= 2.6.32.59-0.7.1
  • kernel-xen-base >= 2.6.32.59-0.7.1
  • kernel-xen-devel >= 2.6.32.59-0.7.1
  • oracleasm-kmp-default >= 2.0.5_2.6.32.19_0.3-7.10.1
  • xen-kmp-default >= 4.0.3_21548_16_2.6.32.59_0.15-0.5.26
  • xen-kmp-pae >= 4.0.3_21548_16_2.6.32.59_0.15-0.5.26
  • xen-kmp-trace >= 4.0.3_21548_16_2.6.32.59_0.15-0.5.26
Patchnames:
slessp1-kernel
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.13_0.5-2.3.9
  • cluster-network-kmp-xen >= 1.4_2.6.32.13_0.5-2.3.9
  • gfs2-kmp-default >= 2_2.6.32.13_0.5-0.2.9
  • gfs2-kmp-xen >= 2_2.6.32.13_0.5-0.2.9
sles11-sp1.x86-64
sle11-sp1-hae.x86-64
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
SAT Patch Nr: 2764
SUSE Linux Enterprise Desktop 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.13_0.5-0.3.9
  • btrfs-kmp-xen >= 0_2.6.32.13_0.5-0.3.9
  • hyper-v-kmp-default >= 0_2.6.32.13_0.5-0.7.7
  • kernel-default >= 2.6.32.13-0.5.1
  • kernel-default-base >= 2.6.32.13-0.5.1
  • kernel-default-devel >= 2.6.32.13-0.5.1
  • kernel-default-extra >= 2.6.32.13-0.5.1
  • kernel-desktop-devel >= 2.6.32.13-0.5.1
  • kernel-source >= 2.6.32.13-0.5.1
  • kernel-syms >= 2.6.32.13-0.5.1
  • kernel-xen >= 2.6.32.13-0.5.1
  • kernel-xen-base >= 2.6.32.13-0.5.1
  • kernel-xen-devel >= 2.6.32.13-0.5.1
  • kernel-xen-extra >= 2.6.32.13-0.5.1
sles11-sp1.x86-64
sle11-sp1-hae.x86-64
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
SAT Patch Nr: 2764
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.13_0.5-0.3.9
  • btrfs-kmp-xen >= 0_2.6.32.13_0.5-0.3.9
  • ext4dev-kmp-default >= 0_2.6.32.13_0.5-7.3.9
  • ext4dev-kmp-xen >= 0_2.6.32.13_0.5-7.3.9
  • hyper-v-kmp-default >= 0_2.6.32.13_0.5-0.7.7
  • kernel-default >= 2.6.32.13-0.5.1
  • kernel-default-base >= 2.6.32.13-0.5.1
  • kernel-default-devel >= 2.6.32.13-0.5.1
  • kernel-source >= 2.6.32.13-0.5.1
  • kernel-syms >= 2.6.32.13-0.5.1
  • kernel-trace >= 2.6.32.13-0.5.1
  • kernel-trace-base >= 2.6.32.13-0.5.1
  • kernel-trace-devel >= 2.6.32.13-0.5.1
  • kernel-xen >= 2.6.32.13-0.5.1
  • kernel-xen-base >= 2.6.32.13-0.5.1
  • kernel-xen-devel >= 2.6.32.13-0.5.1
sles11-sp1.x86-64
sle11-sp1-hae.x86-64
sles11-sp1-vmware.x86-64
sled11-sp1.x86-64
SAT Patch Nr: 2764
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.13_0.5-2.3.9
  • gfs2-kmp-default >= 2_2.6.32.13_0.5-0.2.9
sle11-sp1-hae.s390x
sles11-sp1.s390x
SAT Patch Nr: 2763
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.13_0.5-0.3.9
  • ext4dev-kmp-default >= 0_2.6.32.13_0.5-7.3.9
  • kernel-default >= 2.6.32.13-0.5.1
  • kernel-default-base >= 2.6.32.13-0.5.1
  • kernel-default-devel >= 2.6.32.13-0.5.1
  • kernel-default-man >= 2.6.32.13-0.5.1
  • kernel-source >= 2.6.32.13-0.5.1
  • kernel-syms >= 2.6.32.13-0.5.1
  • kernel-trace >= 2.6.32.13-0.5.1
  • kernel-trace-base >= 2.6.32.13-0.5.1
  • kernel-trace-devel >= 2.6.32.13-0.5.1
sle11-sp1-hae.s390x
sles11-sp1.s390x
SAT Patch Nr: 2763
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.13_0.5-2.3.9
  • gfs2-kmp-default >= 2_2.6.32.13_0.5-0.2.9
sles11-sp1.ia64
sle11-sp1-hae.ia64
SAT Patch Nr: 2761
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.13_0.5-0.3.9
  • ext4dev-kmp-default >= 0_2.6.32.13_0.5-7.3.9
  • kernel-default >= 2.6.32.13-0.5.1
  • kernel-default-base >= 2.6.32.13-0.5.1
  • kernel-default-devel >= 2.6.32.13-0.5.1
  • kernel-source >= 2.6.32.13-0.5.1
  • kernel-syms >= 2.6.32.13-0.5.1
  • kernel-trace >= 2.6.32.13-0.5.1
  • kernel-trace-base >= 2.6.32.13-0.5.1
  • kernel-trace-devel >= 2.6.32.13-0.5.1
sles11-sp1.ia64
sle11-sp1-hae.ia64
SAT Patch Nr: 2761
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.13-0.5.1
Builds
SAT Patch Nr: 2768
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.13_0.5-2.3.9
  • cluster-network-kmp-ppc64 >= 1.4_2.6.32.13_0.5-2.3.9
  • gfs2-kmp-default >= 2_2.6.32.13_0.5-0.2.9
  • gfs2-kmp-ppc64 >= 2_2.6.32.13_0.5-0.2.9
sle11-sp1-hae.ppc
sles11-sp1.ppc
SAT Patch Nr: 2762
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.13_0.5-0.3.9
  • ext4dev-kmp-default >= 0_2.6.32.13_0.5-7.3.9
  • ext4dev-kmp-ppc64 >= 0_2.6.32.13_0.5-7.3.9
  • kernel-default >= 2.6.32.13-0.5.1
  • kernel-default-base >= 2.6.32.13-0.5.1
  • kernel-default-devel >= 2.6.32.13-0.5.1
  • kernel-ppc64 >= 2.6.32.13-0.5.1
  • kernel-ppc64-base >= 2.6.32.13-0.5.1
  • kernel-ppc64-devel >= 2.6.32.13-0.5.1
  • kernel-source >= 2.6.32.13-0.5.1
  • kernel-syms >= 2.6.32.13-0.5.1
  • kernel-trace >= 2.6.32.13-0.5.1
  • kernel-trace-base >= 2.6.32.13-0.5.1
  • kernel-trace-devel >= 2.6.32.13-0.5.1
sle11-sp1-hae.ppc
sles11-sp1.ppc
SAT Patch Nr: 2762
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.13-0.5.1
  • kernel-pae-extra >= 2.6.32.13-0.5.1
  • kernel-xen-extra >= 2.6.32.13-0.5.1
Builds
SAT Patch Nr: 2765
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.13-0.5.1
  • kernel-ppc64-extra >= 2.6.32.13-0.5.1
Builds
SAT Patch Nr: 2767
SUSE Linux Enterprise High Availability Extension 11 SP1
  • cluster-network-kmp-default >= 1.4_2.6.32.13_0.5-2.3.9
  • cluster-network-kmp-pae >= 1.4_2.6.32.13_0.5-2.3.9
  • cluster-network-kmp-xen >= 1.4_2.6.32.13_0.5-2.3.9
  • gfs2-kmp-default >= 2_2.6.32.13_0.5-0.2.9
  • gfs2-kmp-pae >= 2_2.6.32.13_0.5-0.2.9
  • gfs2-kmp-xen >= 2_2.6.32.13_0.5-0.2.9
sle11-sp1-hae.x86
sles11-sp1-vmware.x86
sled11-sp1.x86
sles11-sp1.x86
SAT Patch Nr: 2760
SUSE Linux Enterprise Desktop 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.13_0.5-0.3.9
  • btrfs-kmp-pae >= 0_2.6.32.13_0.5-0.3.9
  • btrfs-kmp-xen >= 0_2.6.32.13_0.5-0.3.9
  • hyper-v-kmp-default >= 0_2.6.32.13_0.5-0.7.7
  • hyper-v-kmp-pae >= 0_2.6.32.13_0.5-0.7.7
  • kernel-default >= 2.6.32.13-0.5.1
  • kernel-default-base >= 2.6.32.13-0.5.1
  • kernel-default-devel >= 2.6.32.13-0.5.1
  • kernel-default-extra >= 2.6.32.13-0.5.1
  • kernel-desktop-devel >= 2.6.32.13-0.5.1
  • kernel-pae >= 2.6.32.13-0.5.1
  • kernel-pae-base >= 2.6.32.13-0.5.1
  • kernel-pae-devel >= 2.6.32.13-0.5.1
  • kernel-pae-extra >= 2.6.32.13-0.5.1
  • kernel-source >= 2.6.32.13-0.5.1
  • kernel-syms >= 2.6.32.13-0.5.1
  • kernel-xen >= 2.6.32.13-0.5.1
  • kernel-xen-base >= 2.6.32.13-0.5.1
  • kernel-xen-devel >= 2.6.32.13-0.5.1
  • kernel-xen-extra >= 2.6.32.13-0.5.1
sle11-sp1-hae.x86
sles11-sp1-vmware.x86
sled11-sp1.x86
sles11-sp1.x86
SAT Patch Nr: 2760
SUSE Linux Enterprise Server 11 SP1
  • btrfs-kmp-default >= 0_2.6.32.13_0.5-0.3.9
  • btrfs-kmp-pae >= 0_2.6.32.13_0.5-0.3.9
  • btrfs-kmp-xen >= 0_2.6.32.13_0.5-0.3.9
  • ext4dev-kmp-default >= 0_2.6.32.13_0.5-7.3.9
  • ext4dev-kmp-pae >= 0_2.6.32.13_0.5-7.3.9
  • ext4dev-kmp-xen >= 0_2.6.32.13_0.5-7.3.9
  • hyper-v-kmp-default >= 0_2.6.32.13_0.5-0.7.7
  • hyper-v-kmp-pae >= 0_2.6.32.13_0.5-0.7.7
  • kernel-default >= 2.6.32.13-0.5.1
  • kernel-default-base >= 2.6.32.13-0.5.1
  • kernel-default-devel >= 2.6.32.13-0.5.1
  • kernel-pae >= 2.6.32.13-0.5.1
  • kernel-pae-base >= 2.6.32.13-0.5.1
  • kernel-pae-devel >= 2.6.32.13-0.5.1
  • kernel-source >= 2.6.32.13-0.5.1
  • kernel-syms >= 2.6.32.13-0.5.1
  • kernel-trace >= 2.6.32.13-0.5.1
  • kernel-trace-base >= 2.6.32.13-0.5.1
  • kernel-trace-devel >= 2.6.32.13-0.5.1
  • kernel-xen >= 2.6.32.13-0.5.1
  • kernel-xen-base >= 2.6.32.13-0.5.1
  • kernel-xen-devel >= 2.6.32.13-0.5.1
sle11-sp1-hae.x86
sles11-sp1-vmware.x86
sled11-sp1.x86
sles11-sp1.x86
SAT Patch Nr: 2760
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.13-0.5.1
  • kernel-xen-extra >= 2.6.32.13-0.5.1
Builds
SAT Patch Nr: 2769
openSUSE 11.2
  • kernel-debug-base-debuginfo >= 2.6.31.14-0.1.1
  • kernel-debug-debuginfo >= 2.6.31.14-0.1.1
  • kernel-debug-debugsource >= 2.6.31.14-0.1.1
  • kernel-debug-devel-debuginfo >= 2.6.31.14-0.1.1
  • kernel-default-base-debuginfo >= 2.6.31.14-0.1.1
  • kernel-default-debuginfo >= 2.6.31.14-0.1.1
  • kernel-default-debugsource >= 2.6.31.14-0.1.1
  • kernel-default-devel-debuginfo >= 2.6.31.14-0.1.1
  • kernel-desktop-base-debuginfo >= 2.6.31.14-0.1.1
  • kernel-desktop-debuginfo >= 2.6.31.14-0.1.1
  • kernel-desktop-debugsource >= 2.6.31.14-0.1.1
  • kernel-desktop-devel-debuginfo >= 2.6.31.14-0.1.1
  • kernel-pae-base-debuginfo >= 2.6.31.14-0.1.1
  • kernel-pae-debuginfo >= 2.6.31.14-0.1.1
  • kernel-pae-debugsource >= 2.6.31.14-0.1.1
  • kernel-pae-devel-debuginfo >= 2.6.31.14-0.1.1
  • kernel-trace-base-debuginfo >= 2.6.31.14-0.1.1
  • kernel-trace-debuginfo >= 2.6.31.14-0.1.1
  • kernel-trace-debugsource >= 2.6.31.14-0.1.1
  • kernel-trace-devel-debuginfo >= 2.6.31.14-0.1.1
  • kernel-vanilla-base-debuginfo >= 2.6.31.14-0.1.1
  • kernel-vanilla-debuginfo >= 2.6.31.14-0.1.1
  • kernel-vanilla-debugsource >= 2.6.31.14-0.1.1
  • kernel-vanilla-devel-debuginfo >= 2.6.31.14-0.1.1
  • kernel-xen-base-debuginfo >= 2.6.31.14-0.1.1
  • kernel-xen-debuginfo >= 2.6.31.14-0.1.1
  • kernel-xen-debugsource >= 2.6.31.14-0.1.1
  • kernel-xen-devel-debuginfo >= 2.6.31.14-0.1.1
  • preload-kmp-default-debuginfo >= 1.1_2.6.31.14_0.1-6.9.26
  • preload-kmp-desktop-debuginfo >= 1.1_2.6.31.14_0.1-6.9.26
openSUSE 11.2
  • kernel-debug >= 2.6.31.14-0.1.1
  • kernel-debug-base >= 2.6.31.14-0.1.1
  • kernel-debug-devel >= 2.6.31.14-0.1.1
  • kernel-default >= 2.6.31.14-0.1.1
  • kernel-default-base >= 2.6.31.14-0.1.1
  • kernel-default-devel >= 2.6.31.14-0.1.1
  • kernel-desktop >= 2.6.31.14-0.1.1
  • kernel-desktop-base >= 2.6.31.14-0.1.1
  • kernel-desktop-devel >= 2.6.31.14-0.1.1
  • kernel-pae >= 2.6.31.14-0.1.1
  • kernel-pae-base >= 2.6.31.14-0.1.1
  • kernel-pae-devel >= 2.6.31.14-0.1.1
  • kernel-source >= 2.6.31.14-0.1.1
  • kernel-source-vanilla >= 2.6.31.14-0.1.1
  • kernel-syms >= 2.6.31.14-0.1.1
  • kernel-trace >= 2.6.31.14-0.1.1
  • kernel-trace-base >= 2.6.31.14-0.1.1
  • kernel-trace-devel >= 2.6.31.14-0.1.1
  • kernel-vanilla >= 2.6.31.14-0.1.1
  • kernel-vanilla-base >= 2.6.31.14-0.1.1
  • kernel-vanilla-devel >= 2.6.31.14-0.1.1
  • kernel-xen >= 2.6.31.14-0.1.1
  • kernel-xen-base >= 2.6.31.14-0.1.1
  • kernel-xen-devel >= 2.6.31.14-0.1.1
  • preload-kmp-default >= 1.1_2.6.31.14_0.1-6.9.26
  • preload-kmp-desktop >= 1.1_2.6.31.14_0.1-6.9.26
SLE 11 SERVER Unsupported Extras
  • kernel-default-extra >= 2.6.32.13-0.5.1
Builds
SAT Patch Nr: 2766


Status of this issue by product and package

Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification.

Product(s) Source package State
SUSE Linux Enterprise Desktop 11 SP1 kernel-source Released
SUSE Linux Enterprise Server 11 SP1 kernel-source Released
SUSE Linux Enterprise Server 11 SP1 LTSS kernel-source Released
SUSE Linux Enterprise Server for SAP AIO 11 SP1 kernel-source Released