CVE-2014-3535

Linux Kernel < 2.6.36 - Denial of Service via VxLAN Invalid Packet Handling

Title source: llm
STIX 2.1

Description

include/linux/netdevice.h in the Linux kernel before 2.6.36 incorrectly uses macros for netdev_printk and its related logging implementation, which allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) by sending invalid packets to a VxLAN interface.

References (5)

Core 5

Scores

EPSS 0.0415
EPSS Percentile 89.7%

Details

CWE
CWE-119
Status published
Products (14)
linux/linux_kernel 2.6.35 (7 CPE variants)
linux/linux_kernel 2.6.35.1
linux/linux_kernel 2.6.35.2
linux/linux_kernel 2.6.35.3
linux/linux_kernel 2.6.35.4
linux/linux_kernel 2.6.35.5
linux/linux_kernel 2.6.35.6
linux/linux_kernel 2.6.35.7
linux/linux_kernel 2.6.35.8
linux/linux_kernel 2.6.35.9
... and 4 more
Published Sep 28, 2014
Tracked Since Feb 18, 2026