Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-1bhm-5xj1-duh8

Summary kernel: L2TP send buffer allocation size overflows

Aliases

alias	CVE-2010-4160

Fixed_packages

Affected_packages

url pkg:rpm/redhat/kernel@2.6.32-71.14.1?arch=el6

purl pkg:rpm/redhat/kernel@2.6.32-71.14.1?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13jv-4raj-3bc6

vulnerability	VCID-1bhm-5xj1-duh8

vulnerability	VCID-1d5z-ugrh-s7bj

vulnerability	VCID-22bx-f76m-e3c1

vulnerability	VCID-2m8w-7whg-jube

vulnerability	VCID-381s-khqd-muhz

vulnerability	VCID-3egz-urd4-yfbw

vulnerability	VCID-519v-6b9u-dygr

vulnerability	VCID-5754-km4k-ukd3

vulnerability	VCID-5pu5-muu2-1bf3

vulnerability	VCID-5x5t-fnw6-kqea

vulnerability	VCID-643a-mvrh-bbap

vulnerability	VCID-6x7p-5tt7-5fdv

vulnerability	VCID-cbze-qxa8-37be

vulnerability	VCID-cw6b-qbau-hbh7

vulnerability	VCID-dbrc-nqc1-x3ap

vulnerability	VCID-ek2s-wkm1-4ygb

vulnerability	VCID-f744-pabt-7ffu

vulnerability	VCID-gwuw-j14j-dffw

vulnerability	VCID-j49x-d5sv-wkek

vulnerability	VCID-m6hm-2cau-4fdg

vulnerability	VCID-mcdj-296n-1kc9

vulnerability	VCID-nej4-chcw-fqah

vulnerability	VCID-nq55-xn3b-8qdm

vulnerability	VCID-nub2-qpm7-n7gv

vulnerability	VCID-pqms-kbb2-wua8

vulnerability	VCID-rdyv-juby-e3gq

vulnerability	VCID-sknd-kp51-juec

vulnerability	VCID-uk6m-rq4u-nugy

vulnerability	VCID-y21h-7qfs-1kb7

vulnerability	VCID-zwvt-5gfz-suda

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.6.32-71.14.1%3Farch=el6

url pkg:rpm/redhat/kernel-rt@2.6.33.7-rt29.55?arch=el5rt

purl pkg:rpm/redhat/kernel-rt@2.6.33.7-rt29.55?arch=el5rt

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13jv-4raj-3bc6

vulnerability	VCID-1bhm-5xj1-duh8

vulnerability	VCID-1d5z-ugrh-s7bj

vulnerability	VCID-2v2h-1vgg-qubq

vulnerability	VCID-57xt-prud-ruga

vulnerability	VCID-6x7p-5tt7-5fdv

vulnerability	VCID-ccy6-xxzm-vbb4

vulnerability	VCID-dg9k-nfvc-k7en

vulnerability	VCID-ek2s-wkm1-4ygb

vulnerability	VCID-ewd8-ytvq-h7aw

vulnerability	VCID-gwuw-j14j-dffw

vulnerability	VCID-k9ct-x12b-cfd6

vulnerability	VCID-mcdj-296n-1kc9

vulnerability	VCID-qraj-ye4g-8qdr

vulnerability	VCID-uk6m-rq4u-nugy

vulnerability	VCID-uxye-sz24-dqd4

vulnerability	VCID-xr4s-smmp-fubc

vulnerability	VCID-ydtx-ae9c-eqah

vulnerability	VCID-zumd-vknc-87ba

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel-rt@2.6.33.7-rt29.55%3Farch=el5rt

References

reference_url	http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=253eacc070b114c2ec1f81b067d2fed7305467b0
reference_id
reference_type
scores
url	http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=253eacc070b114c2ec1f81b067d2fed7305467b0

reference_url	http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8acfe468b0384e834a303f08ebc4953d72fb690a
reference_id
reference_type
scores
url	http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8acfe468b0384e834a303f08ebc4953d72fb690a

reference_url	http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00007.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00007.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00002.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00002.html

reference_url	http://openwall.com/lists/oss-security/2010/11/10/16
reference_id
reference_type
scores
url	http://openwall.com/lists/oss-security/2010/11/10/16

reference_url	http://openwall.com/lists/oss-security/2010/11/10/5
reference_id
reference_type
scores
url	http://openwall.com/lists/oss-security/2010/11/10/5

reference_url	http://openwall.com/lists/oss-security/2010/11/24/12
reference_id
reference_type
scores
url	http://openwall.com/lists/oss-security/2010/11/24/12

reference_url	http://openwall.com/lists/oss-security/2010/11/24/4
reference_id
reference_type
scores
url	http://openwall.com/lists/oss-security/2010/11/24/4

reference_url	http://openwall.com/lists/oss-security/2010/11/24/5
reference_id
reference_type
scores
url	http://openwall.com/lists/oss-security/2010/11/24/5

reference_url	http://openwall.com/lists/oss-security/2010/11/24/6
reference_id
reference_type
scores
url	http://openwall.com/lists/oss-security/2010/11/24/6

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4160.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4160.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-4160

reference_id

reference_type

scores

value	0.00162
scoring_system	epss
scoring_elements	0.36744
published_at	2026-04-29T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.37077
published_at	2026-04-01T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.37243
published_at	2026-04-02T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.3727
published_at	2026-04-04T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.371
published_at	2026-04-07T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.37152
published_at	2026-04-08T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.37166
published_at	2026-04-09T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.37176
published_at	2026-04-11T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.37142
published_at	2026-04-12T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.37115
published_at	2026-04-13T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.37162
published_at	2026-04-16T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.37144
published_at	2026-04-18T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.37088
published_at	2026-04-21T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.36863
published_at	2026-04-24T12:55:00Z

value	0.00162
scoring_system	epss
scoring_elements	0.36831
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-4160

reference_url	http://secunia.com/advisories/42801
reference_id
reference_type
scores
url	http://secunia.com/advisories/42801

reference_url	http://secunia.com/advisories/42890
reference_id
reference_type
scores
url	http://secunia.com/advisories/42890

reference_url	http://secunia.com/advisories/42932
reference_id
reference_type
scores
url	http://secunia.com/advisories/42932

reference_url	http://secunia.com/advisories/43056
reference_id
reference_type
scores
url	http://secunia.com/advisories/43056

reference_url	http://secunia.com/advisories/43291
reference_id
reference_type
scores
url	http://secunia.com/advisories/43291

reference_url	http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36.2
reference_id
reference_type
scores
url	http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36.2

reference_url	http://www.redhat.com/support/errata/RHSA-2011-0007.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2011-0007.html

reference_url	http://www.securityfocus.com/bid/44762
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/44762

reference_url	http://www.spinics.net/lists/netdev/msg145248.html
reference_id
reference_type
scores
url	http://www.spinics.net/lists/netdev/msg145248.html

reference_url	http://www.spinics.net/lists/netdev/msg145673.html
reference_id
reference_type
scores
url	http://www.spinics.net/lists/netdev/msg145673.html

reference_url	http://www.vupen.com/english/advisories/2011/0012
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0012

reference_url	http://www.vupen.com/english/advisories/2011/0124
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0124

reference_url	http://www.vupen.com/english/advisories/2011/0213
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0213

reference_url	http://www.vupen.com/english/advisories/2011/0375
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0375

reference_url	http://xorl.wordpress.com/2010/11/11/cve-2010-4160-linux-kernel-l2tp-integer-overflows/
reference_id
reference_type
scores
url	http://xorl.wordpress.com/2010/11/11/cve-2010-4160-linux-kernel-l2tp-integer-overflows/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=651892
reference_id	651892
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=651892

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:linux:linux_kernel::::::::
reference_id	cpe:2.3:o:linux:linux_kernel::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:linux:linux_kernel::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.2:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:11.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:11.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_desktop:10:sp3::::::
reference_id	cpe:2.3:o:suse:linux_enterprise_desktop:10:sp3::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_desktop:10:sp3::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1::::::
reference_id	cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:10:sp3::::::
reference_id	cpe:2.3:o:suse:linux_enterprise_server:10:sp3::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:10:sp3::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::::
reference_id	cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:sp1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:9:::::::*
reference_id	cpe:2.3:o:suse:linux_enterprise_server:9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp3::::::
reference_id	cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp3::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_software_development_kit:10:sp3::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2010-4160

reference_id

CVE-2010-4160

reference_type

scores

value	6.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:C/I:C/A:C

url

https://nvd.nist.gov/vuln/detail/CVE-2010-4160

reference_url	https://access.redhat.com/errata/RHSA-2011:0007
reference_id	RHSA-2011:0007
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0007

reference_url	https://access.redhat.com/errata/RHSA-2011:0330
reference_id	RHSA-2011:0330
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0330

reference_url	https://usn.ubuntu.com/1054-1/
reference_id	USN-1054-1
reference_type
scores
url	https://usn.ubuntu.com/1054-1/

reference_url	https://usn.ubuntu.com/1071-1/
reference_id	USN-1071-1
reference_type
scores
url	https://usn.ubuntu.com/1071-1/

reference_url	https://usn.ubuntu.com/1072-1/
reference_id	USN-1072-1
reference_type
scores
url	https://usn.ubuntu.com/1072-1/

reference_url	https://usn.ubuntu.com/1073-1/
reference_id	USN-1073-1
reference_type
scores
url	https://usn.ubuntu.com/1073-1/

reference_url	https://usn.ubuntu.com/1083-1/
reference_id	USN-1083-1
reference_type
scores
url	https://usn.ubuntu.com/1083-1/

reference_url	https://usn.ubuntu.com/1093-1/
reference_id	USN-1093-1
reference_type
scores
url	https://usn.ubuntu.com/1093-1/

reference_url	https://usn.ubuntu.com/1202-1/
reference_id	USN-1202-1
reference_type
scores
url	https://usn.ubuntu.com/1202-1/

reference_url	https://usn.ubuntu.com/1204-1/
reference_id	USN-1204-1
reference_type
scores
url	https://usn.ubuntu.com/1204-1/

Weaknesses

cwe_id	190
name	Integer Overflow or Wraparound
description	The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.

Exploits

Severity_range_score 6.9 - 6.9

Exploitability 0.5

Weighted_severity 6.2

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1bhm-5xj1-duh8

Vulnerability Instance