LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 24, 2012

A uTouch architecture introduction

LWN.net Weekly Edition for May 17, 2012

Tasting the Ice Cream Sandwich

Highlights from the PostgreSQL 9.2 beta

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

kernel: multiple vulnerabilities

Package(s):kernel CVE #(s):CVE-2007-4567 CVE-2009-4536 CVE-2009-4537 CVE-2009-4538
Created:January 8, 2010 Updated:July 5, 2011
Description: From the Red Hat advisory:

a flaw was found in the IPv6 Extension Header (EH) handling implementation in the Linux kernel. The skb->dst data structure was not properly validated in the ipv6_hop_jumbo() function. This could possibly lead to a remote denial of service. (CVE-2007-4567)

a flaw was found in each of the following Intel PRO/1000 Linux drivers in the Linux kernel: e1000 and e1000e. A remote attacker using packets larger than the MTU could bypass the existing fragment check, resulting in partial, invalid frames being passed to the network stack. These flaws could also possibly be used to trigger a remote denial of service. (CVE-2009-4536, CVE-2009-4538)

a flaw was found in the Realtek r8169 Ethernet driver in the Linux kernel. Receiving overly-long frames with network cards supported by this driver could possibly result in a remote denial of service. (CVE-2009-4537)

Alerts:
SUSE SUSE-SU-2011:0737-1 2011-07-05
SUSE SUSE-SU-2011:0711-1 2011-06-29
Red Hat RHSA-2010:0882-01 2010-11-12
openSUSE openSUSE-SU-2010:0664-1 2010-09-23
SUSE SUSE-SA:2010:036 2010-09-01
MeeGo MeeGo-SA-10:01 2010-07-07
Debian DSA-2053-1 2010-05-25
SuSE SUSE-SA:2010:023 2010-05-06
Red Hat RHSA-2010:0342-01 2010-04-06
openSUSE openSUSE-SU-2010:0397-1 2010-07-19
Mandriva MDVSA-2010:066 2010-03-24
CentOS CESA-2010:0146 2010-03-17
Red Hat RHSA-2010:0149-01 2010-03-16
Red Hat RHSA-2010:0148-01 2010-03-16
Red Hat RHSA-2010:0146-01 2010-03-16
SUSE SUSE-SA:2010:031 2010-07-20
Ubuntu USN-947-2 2010-06-04
Ubuntu USN-947-1 2010-06-03
SuSE SUSE-SA:2010:014 2010-03-03
SuSE SUSE-SA:2010:009 2010-02-05
Pardus 2010-25 2010-02-02
Red Hat RHSA-2010:0076-01 2010-02-02
SuSE SUSE-SA:2010:007 2010-01-22
Red Hat RHSA-2010:0041-01 2010-01-21
Debian DSA-2004-1 2010-02-27
Pardus 2010-35 2010-02-25
SuSE SUSE-SA:2010:013 2010-02-18
Fedora FEDORA-2010-1787 2010-02-12
SuSE SUSE-SA:2010:012 2010-02-15
Debian DSA-1996-1 2010-02-12
Pardus 2010-28 2010-02-02
Red Hat RHSA-2010:0053-01 2010-01-19
CentOS CESA-2010:0020 2010-01-15
SuSE SUSE-SA:2010:005 2010-01-15
SuSE SUSE-SA:2010:010 2010-02-08
Red Hat RHSA-2010:0079-01 2010-02-02
CentOS CESA-2010:0019 2010-01-08
Red Hat RHSA-2010:0020-01 2010-01-07
Red Hat RHSA-2010:0019-01 2010-01-07
Debian DSA-2003-1 2010-02-22
Red Hat RHSA-2010:0111-01 2010-02-16
Fedora FEDORA-2010-1500 2010-02-05
Ubuntu USN-894-1 2010-02-05
CentOS CESA-2010:0076 2010-02-04
(Log in to post comments)

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds