The vulnerability of the pppol2tp_create() function in the net/l2tp/l2tp_ppp.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information, or to enhance their privileges.

The vulnerability of the pppol2tpcreate function in the net/l2tp/l2tpppp.c module of the Linux kernel is related to concurrent resource access race condition. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected...

PT-2018-3974 · Google +2 · Android Kernel +2

Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue is related to a possible use after free due to a race condition in the pppol2tp create function of l2tp ppp.c. This could lead to local escalation of privilege,...