VDB
CVE-2010-3873
CVE-2010-3873
PUBLISHED
Reported by redhat · Published January 3, 2011
The X.25 implementation in the Linux kernel before 2.6.36.2 does not properly parse facilities, which allows remote attackers to cause a denial of service (heap memory corruption and panic) or possibly have unspecified other impact via malformed (1) X25_FAC_CALLING_AE or (2) X25_FAC_CALLED_AE data, related to net/x25/x25_facilities.c and net/x25/x25_in.c, a different vulnerability than CVE-2010-4164.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | *, n/a |
Timeline
- Jan 3, 2011 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Feb 13, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- [netdev] 20101102 [SECURITY] memory corruption in X.25 facilities parsing mailing-listx_refsource_MLIST
- x_refsource_CONFIRM
- x_refsource_CONFIRM
- [oss-security] 20101104 Re: CVE request: X.25 remote DoS mailing-listx_refsource_MLIST
- ADV-2011-0375 vdb-entryx_refsource_VUPEN
- [oss-security] 20101103 CVE request: X.25 remote DoS mailing-listx_refsource_MLIST
- openSUSE-SU-2013:0925 vendor-advisoryx_refsource_SUSE
- SUSE-SA:2011:008 vendor-advisoryx_refsource_SUSE
- MDVSA-2011:029 vendor-advisoryx_refsource_MANDRIVA
- 43291 third-party-advisoryx_refsource_SECUNIA
- [netdev] 20101104 Re: [SECURITY] memory corruption in X.25 facilities parsing mailing-listx_refsource_MLIST
- x_refsource_CONFIRM
- DSA-2126 vendor-advisoryx_refsource_DEBIAN