CVE-2009-4537

2010-01-1200:00:00

ubuntu.com

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.055 Low

EPSS

Percentile

93.1%

JSON

drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 and
earlier does not properly check the size of an Ethernet frame that exceeds
the MTU, which allows remote attackers to (1) cause a denial of service
(temporary network outage) via a packet with a crafted size, in conjunction
with certain packets containing A characters and certain packets containing
E characters; or (2) cause a denial of service (system crash) via a packet
with a crafted size, in conjunction with certain packets containing ‘\0’
characters, related to the value of the status register and erroneous
behavior associated with the RxMaxSize register. NOTE: this vulnerability
exists because of an incorrect fix for CVE-2009-1389.

Bugs

<https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-4537>

Notes

Author	Note
kees	http://marc.info/?l=linux-netdev&m=126202972828626&w=2 http://marc.info/?l=linux-netdev&m=126269986618934&w=2

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchlinux< 2.6.24-28.70UNKNOWN
ubuntu9.04noarchlinux< 2.6.28-19.61UNKNOWN
ubuntu9.10noarchlinux< 2.6.31-22.60UNKNOWN
ubuntu10.04noarchlinux< 2.6.32-22.35UNKNOWN
ubuntu6.06noarchlinux-source-2.6.15< 2.6.15-55.84UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	8.04	noarch	linux	< 2.6.24-28.70	UNKNOWN
ubuntu	9.04	noarch	linux	< 2.6.28-19.61	UNKNOWN
ubuntu	9.10	noarch	linux	< 2.6.31-22.60	UNKNOWN
ubuntu	10.04	noarch	linux	< 2.6.32-22.35	UNKNOWN
ubuntu	6.06	noarch	linux-source-2.6.15	< 2.6.15-55.84	UNKNOWN