PT-2009-6761 · Opensuse+2 · Opensuse+2

Eugene Teo

Published

1970-01-01

Updated

2024-06-15

CVE-2009-4536

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel version 2.6.32.3 and earlier Red Hat Enterprise Linux kernel versions 2.4.21

Description The issue allows remote attackers to bypass packet filters via a large packet with a crafted payload. This is due to the e1000 driver in the Linux kernel handling Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame. Multiple vulnerabilities in the kernel packages of Red Hat Enterprise Linux and openSUSE may lead to disruption of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely.

Recommendations For Linux kernel version 2.6.32.3 and earlier, update to a version later than 2.6.32.3 to resolve the issue. For Red Hat Enterprise Linux kernel versions 2.4.21, update to a version later than 2.4.21 to resolve the issue. As a temporary workaround, consider restricting access to the network to minimize the risk of exploitation.

Fix

Improper Validation of Array Index

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-129CWE-189

Related Identifiers

BDU:2015-05250

BDU:2015-05251

BDU:2015-06103

BDU:2015-06104

BDU:2015-06105

BDU:2015-06106

BDU:2015-06107

BDU:2015-06108

BDU:2015-06109

BDU:2015-06110

BDU:2015-06111

CVE-2009-4536

DSA-1996-1

DSA-2003-1

DSA-2005-1

OPENSUSE-SU-2024:10128-1

RHSA-2010:0019

RHSA-2010:0020

RHSA-2010:0041

RHSA-2010:0053

RHSA-2010:0079

RHSA-2010:0095

RHSA-2010:0111

RHSA-2010:0882

RHSA-2010_0019

RHSA-2010_0020

Affected Products

Linux Kernel

Red Hat

Opensuse

PT-2009-6761 · Opensuse+2 · Opensuse+2

CVE-2009-4536

Weakness Enumeration

Related Identifiers

Affected Products

References · 267