CVE-2010-4160 — MEDIUM (6.9)

Q: How severe is CVE-2010-4160?

CVE-2010-4160 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2010-4160?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Opensuse Opensuse, Suse Linux Enterprise Desktop, Suse Linux Enterprise Server, Suse Linux Enterprise Software Development Kit.

Vulnerability Description

Multiple integer overflows in the (1) pppol2tp_sendmsg function in net/l2tp/l2tp_ppp.c, and the (2) l2tp_ip_sendmsg function in net/l2tp/l2tp_ip.c, in the PPPoL2TP and IPoL2TP implementations in the Linux kernel before 2.6.36.2 allow local users to cause a denial of service (heap memory corruption and panic) or possibly gain privileges via a crafted sendto call.

CVSS Score

6.9

MEDIUM

AV:L/AC:M/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	< 2.6.36.2
Opensuse	Opensuse	11.2
Suse	Linux Enterprise Desktop	10
Suse	Linux Enterprise Server	9
Suse	Linux Enterprise Software Development Kit	10

Related Weaknesses (CWE)

CWE-190

References

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00007.htmlMailing ListThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00002.htmlMailing ListThird Party Advisory
http://openwall.com/lists/oss-security/2010/11/10/16Mailing ListPatchThird Party Advisory
http://openwall.com/lists/oss-security/2010/11/10/5Mailing ListPatchThird Party Advisory
http://openwall.com/lists/oss-security/2010/11/24/12Mailing ListThird Party Advisory
http://openwall.com/lists/oss-security/2010/11/24/4Mailing ListPatchThird Party Advisory
http://openwall.com/lists/oss-security/2010/11/24/5Mailing ListPatchThird Party Advisory
http://openwall.com/lists/oss-security/2010/11/24/6Mailing ListPatchThird Party Advisory
http://secunia.com/advisories/42801Third Party Advisory
http://secunia.com/advisories/42890Third Party Advisory
http://secunia.com/advisories/42932Third Party Advisory

FAQ

What is CVE-2010-4160?

CVE-2010-4160 is a vulnerability with a CVSS score of 6.9 (MEDIUM). Multiple integer overflows in the (1) pppol2tp_sendmsg function in net/l2tp/l2tp_ppp.c, and the (2) l2tp_ip_sendmsg function in net/l2tp/l2tp_ip.c, in the PPPoL2TP and IPoL2TP implementations in the L...

How severe is CVE-2010-4160?

CVE-2010-4160 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2010-4160?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Opensuse Opensuse, Suse Linux Enterprise Desktop, Suse Linux Enterprise Server, Suse Linux Enterprise Software Development Kit.