Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 303759

Summary: Kernel: r8169 multiple issues (CVE-2009-4537)
Product: Gentoo Security Reporter: Stefan Behte (RETIRED) <craig>
Component: KernelAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: normal    
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: http://marc.info/?l=linux-netdev&m=126202972828626&w=2
Whiteboard: [linux <2.6.34]
Package list:
Runtime testing required: ---

Description Stefan Behte (RETIRED) gentoo-dev Security 2010-02-06 15:35:27 UTC 
CVE-2009-4537 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-4537):
  drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3
  and earlier does not properly check the size of an Ethernet frame
  that exceeds the MTU, which allows remote attackers to (1) cause a
  denial of service (temporary network outage) via a packet with a
  crafted size, in conjunction with certain packets containing A
  characters and certain packets containing E characters; or (2) cause
  a denial of service (system crash) via a packet with a crafted size,
  in conjunction with certain packets containing '\0' characters,
  related to the value of the status register and erroneous behavior
  associated with the RxMaxSize register.  NOTE: this vulnerability
  exists because of an incorrect fix for CVE-2009-1389.
Comment 1 Bjoern Tropf (RETIRED) gentoo-dev 2010-02-07 09:16:06 UTC 
@Kernel: This Patch has not (yet) found its way to the mainline.