CVE-2009-4538

Vulnerability Description

drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to have an unspecified impact via crafted packets, a related issue to CVE-2009-4537.

CVSS Score

Affected Products

References

• http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035159.hMailing ListThird Party Advisory
• http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00005.htmlMailing ListThird Party Advisory
• http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00008.htmlMailing ListThird Party Advisory
• http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00002.htmlMailing ListThird Party Advisory
• http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.htmlMailing ListThird Party Advisory
• http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00000.htmlMailing ListThird Party Advisory
• http://secunia.com/advisories/38031Third Party Advisory
• http://secunia.com/advisories/38276Third Party Advisory
• http://secunia.com/advisories/38296Third Party Advisory
• http://secunia.com/advisories/38492Third Party Advisory
• http://secunia.com/advisories/38610Third Party Advisory
• http://secunia.com/advisories/38779Third Party Advisory
• http://securitytracker.com/id?1023420Third Party AdvisoryVDB Entry
• http://www.debian.org/security/2010/dsa-1996Third Party Advisory
• http://www.debian.org/security/2010/dsa-2005Third Party Advisory