The isdn_ppp_ccp_reset_alloc_state function in drivers/isdn/isdn_ppp.c in the Linux 2.4 kernel before 2.4.34-rc4 does not call the init_timer function for the ISDN PPP CCP reset state timer, which has unknown attack vectors and results in a system crash.
http://kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.34
http://secunia.com/advisories/23529
http://secunia.com/advisories/23609
http://secunia.com/advisories/23752
http://secunia.com/advisories/24098
http://secunia.com/advisories/24100
http://secunia.com/advisories/24547
http://secunia.com/advisories/25226
http://secunia.com/advisories/25683
http://secunia.com/advisories/25691
http://www.mandriva.com/security/advisories?name=MDKSA-2007:012
http://www.mandriva.com/security/advisories?name=MDKSA-2007:025
http://www.mandriva.com/security/advisories?name=MDKSA-2007:040
http://www.novell.com/linux/security/advisories/2007_18_kernel.html
http://www.novell.com/linux/security/advisories/2007_21_kernel.html
http://www.novell.com/linux/security/advisories/2007_30_kernel.html
http://www.novell.com/linux/security/advisories/2007_35_kernel.html
Published: 2006-12-31
Base Score: 1.7
Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:P
Severity: Low