CVE-2010-3873

2011-01-03T20:00:00
ID CVE-2010-3873
Type cve
Reporter cve@mitre.org
Modified 2013-06-21T02:56:00

Description

The X.25 implementation in the Linux kernel before 2.6.36.2 does not properly parse facilities, which allows remote attackers to cause a denial of service (heap memory corruption and panic) or possibly have unspecified other impact via malformed (1) X25_FAC_CALLING_AE or (2) X25_FAC_CALLED_AE data, related to net/x25/x25_facilities.c and net/x25/x25_in.c, a different vulnerability than CVE-2010-4164.