3829 matches found
CVE-2009-4536
drivers/net/e1000/e1000main.c in the e1000 driver in the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote attackers to bypass packet filters via a large packet with a craft...
CVE-2009-4536
drivers/net/e1000/e1000main.c in the e1000 driver in the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote attackers to bypass packet filters via a large packet with a craft...
kernel: e1000e frame fragment issue
drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to have an unspecified impact via crafted packets, a related issue to CVE-2009-4537...
kernel: e1000 issue reported at 26c3
drivers/net/e1000/e1000main.c in the e1000 driver in the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote attackers to bypass packet filters via a large packet with a craft...
kernel: e1000 issue reported at 26c3
drivers/net/e1000/e1000main.c in the e1000 driver in the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote attackers to bypass packet filters via a large packet with a craft...
RedHat Security Advisory RHSA-2009:1671
The remote host is missing updates announced in advisory RHSA-2009:1671. The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: a flaw was found in the Realtek r8169 Ethernet driver in the Linux kernel. pciunmapsingle...
kernel: flood ping cause out-of-iommu error and panic when mtu larger than 1500
The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service IOMMU space exhaustion and system crash by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping...
kernel: flood ping cause out-of-iommu error and panic when mtu larger than 1500
The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service IOMMU space exhaustion and system crash by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping...
CVE-2005-4883
Race condition in Philippe Jounin Tftpd32 before 2.80 allows remote attackers to cause a denial of service daemon crash via invalid "connect frames."...
kernel: flood ping cause out-of-iommu error and panic when mtu larger than 1500
The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service IOMMU space exhaustion and system crash by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping...
kernel: flood ping cause out-of-iommu error and panic when mtu larger than 1500
The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service IOMMU space exhaustion and system crash by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping...
Firefox crashes with evidence of memory corruption
layout/base/nsCSSFrameConstructor.cpp in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 does not properly handle first-letter frames, which allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unspecified...
CVE-2009-3613
The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service IOMMU space exhaustion and system crash by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping...
Design/Logic Flaw
The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service IOMMU space exhaustion and system crash by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping...
CVE-2009-3613
The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service IOMMU space exhaustion and system crash by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping...
PT-2009-5890 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.27.22 Description: The issue allows remote attackers to cause a denial of service, resulting in IOMMU space exhaustion and system crash. This can be achieved by using jumbo frames for a large amount of netwo...
Design/Logic Flaw
Unspecified vulnerability in the IPv6 networking stack in Sun Solaris 10, and OpenSolaris snv01 through snv82 and snv111 through snv122, when a Cassini GigaSwift Ethernet Adapter aka CE interface is used, allows remote attackers to cause a denial of service panic via vectors involving jumbo frame...
CVE-2009-3164
Unspecified vulnerability in the IPv6 networking stack in Sun Solaris 10, and OpenSolaris snv01 through snv82 and snv111 through snv122, when a Cassini GigaSwift Ethernet Adapter aka CE interface is used, allows remote attackers to cause a denial of service panic via vectors involving jumbo frame...
CVE-2009-2976
Cisco Aironet Lightweight AP devices transmit certain multicast frames in cleartext, enabling remote attackers who sniff the wireless medium to discover Wireless LAN Controller MAC addresses, IP addresses, and AP configuration details. The connected reports reiterate this behavior without providi...
Null pointer dereference
cfg80211 in net/wireless/scan.c in the Linux kernel 2.6.30-rc1 and other versions before 2.6.31-rc6 allows remote attackers to cause a denial of service crash via a sequence of beacon frames in which one frame omits an SSID Information Element IE and the subsequent frame contains an SSID IE, whic...