Back to search
CVE-2009-4536
Published: Jan 12, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote attackers to bypass packet filters via a large packet with a crafted payload. NOTE: this vulnerability exists because of an incorrect fix for CVE-2009-1385.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
35265
third-party-advisory
x_refsource_SECUNIA
38276
third-party-advisory
x_refsource_SECUNIA
http://marc.info/?t=126203102000001&r=1&w=2
x_refsource_CONFIRM
1023420
vdb-entry
x_refsource_SECTRACK
oval:org.mitre.oval:def:13226
vdb-entry
signature
x_refsource_OVAL
SUSE-SA:2010:007
vendor-advisory
x_refsource_SUSE
RHSA-2010:0111
vendor-advisory
x_refsource_REDHAT
38779
third-party-advisory
x_refsource_SECUNIA
https://bugzilla.redhat.com/show_bug.cgi?id=552126
x_refsource_CONFIRM
oval:org.mitre.oval:def:12440
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:10607
vdb-entry
signature
x_refsource_OVAL
38296
third-party-advisory
x_refsource_SECUNIA
http://blog.c22.cc/2009/12/27/26c3-cat-procsysnetipv4fuckups/
x_refsource_MISC
SUSE-SA:2010:012
vendor-advisory
x_refsource_SUSE
RHSA-2010:0053
vendor-advisory
x_refsource_REDHAT
SUSE-SA:2010:014
vendor-advisory
x_refsource_SUSE
RHSA-2010:0882
vendor-advisory
x_refsource_REDHAT
kernel-e1000main-security-bypass(55648)
vdb-entry
x_refsource_XF
DSA-1996
vendor-advisory
x_refsource_DEBIAN
RHSA-2010:0019
vendor-advisory
x_refsource_REDHAT
[oss-security] 20091228 CVE requests - kernel security regressions for CVE-2009-1385/and -1389
mailing-list
x_refsource_MLIST
http://www.vmware.com/security/advisories/VMSA-2011-0009.html
x_refsource_CONFIRM
FEDORA-2010-1787
vendor-advisory
x_refsource_FEDORA
37519
vdb-entry
x_refsource_BID
[oss-security] 20091229 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389
mailing-list
x_refsource_MLIST
SUSE-SA:2010:013
vendor-advisory
x_refsource_SUSE
http://events.ccc.de/congress/2009/Fahrplan/events/3596.en.html
x_refsource_MISC
RHSA-2010:0095
vendor-advisory
x_refsource_REDHAT
SUSE-SA:2010:005
vendor-advisory
x_refsource_SUSE
[oss-security] 20091231 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389
mailing-list
x_refsource_MLIST
RHSA-2010:0020
vendor-advisory
x_refsource_REDHAT
38031
third-party-advisory
x_refsource_SECUNIA
38610
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:7453
vdb-entry
signature
x_refsource_OVAL
DSA-2005
vendor-advisory
x_refsource_DEBIAN
SUSE-SA:2010:010
vendor-advisory
x_refsource_SUSE
RHSA-2010:0041
vendor-advisory
x_refsource_REDHAT
38492
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now