From the Mandrake advisory (http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:062): A vulnerability in the e1000 driver for the Linux kernel 2.4.26 and earlier was discovered by Chris Wright. The e1000 driver does not properly reset memory or restrict the maximum length of a data structure, which can allow a local user to read portions of kernel memory (CAN-2004-0535).
Merging into #54976... *** This bug has been marked as a duplicate of 54976 ***