CVE-2009-4536

Name of the Vulnerable Software and Affected Versions Linux kernel version 2.6.32.3 and earlier Red Hat Enterprise Linux kernel versions 2.4.21

Description The issue allows remote attackers to bypass packet filters via a large packet with a crafted payload. This is due to the e1000 driver in the Linux kernel handling Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame. Multiple vulnerabilities in the kernel packages of Red Hat Enterprise Linux and openSUSE may lead to disruption of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely.

Recommendations For Linux kernel version 2.6.32.3 and earlier, update to a version later than 2.6.32.3 to resolve the issue. For Red Hat Enterprise Linux kernel versions 2.4.21, update to a version later than 2.4.21 to resolve the issue. As a temporary workaround, consider restricting access to the network to minimize the risk of exploitation.