include/linux/netdevice.h in the Linux kernel before 2.6.36 incorrectly uses macros for netdev_printk and its related logging implementation, which allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) by sending invalid packets to a VxLAN interface.
References
Configurations
Configuration 1 (hide)
|
History
13 Feb 2023, 00:40
Type | Values Removed | Values Added |
---|---|---|
Summary | include/linux/netdevice.h in the Linux kernel before 2.6.36 incorrectly uses macros for netdev_printk and its related logging implementation, which allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) by sending invalid packets to a VxLAN interface. | |
References |
|
02 Feb 2023, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | A NULL pointer dereference flaw was found in the way the Linux kernel's networking implementation handled logging while processing certain invalid packets coming in via a VxLAN interface. A remote attacker could use this flaw to crash the system by sending a specially crafted packet to such an interface. |
Information
Published : 2014-09-28 19:55
Updated : 2023-12-10 11:31
NVD link : CVE-2014-3535
Mitre link : CVE-2014-3535
CVE.ORG link : CVE-2014-3535
JSON object : View
Products Affected
linux
- linux_kernel
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer