Launchpad.net

CVE 2009-4538

drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to have an unspecified impact via crafted packets, a related issue to CVE-2009-4537.

Related bugs and status

CVE-2009-4538 (Candidate) is related to these bugs:

Bug #296610: ALPS DualPoint Touchpad flaky performance

Summary				In	Importance	Status
	296610	ALPS DualPoint Touchpad flaky performance		linux (Ubuntu)	High	Fix Released
	296610	ALPS DualPoint Touchpad flaky performance		linux (Ubuntu Karmic)	High	Fix Released

Bug #452175: Random segfaults when using ld.so explicitly to start a program

		In	Importance	Status
452175	Random segfaults when using ld.so explicitly to start a program	bash (Ubuntu)	Undecided	Invalid
452175	Random segfaults when using ld.so explicitly to start a program	linux (Ubuntu)	Medium	Fix Released
452175	Random segfaults when using ld.so explicitly to start a program	bash (Ubuntu Karmic)	Undecided	Invalid
452175	Random segfaults when using ld.so explicitly to start a program	linux (Ubuntu Karmic)	Medium	Fix Released
452175	Random segfaults when using ld.so explicitly to start a program	bash (Ubuntu Lucid)	Undecided	Invalid
452175	Random segfaults when using ld.so explicitly to start a program	linux (Ubuntu Lucid)	Medium	Fix Released

Bug #452558: Change VMETA_MEM_SIZE to 96 to support 1080p videos

Summary				In	Importance	Status
	452558	Change VMETA_MEM_SIZE to 96 to support 1080p videos		linux-mvl-dove (Ubuntu)	Low	Fix Released
	452558	Change VMETA_MEM_SIZE to 96 to support 1080p videos		linux-mvl-dove (Ubuntu Karmic)	Undecided	Won't Fix

Bug #487010: ip6table modules are not included in the -virtual kernel packages

Summary				In	Importance	Status
	487010	ip6table modules are not included in the -virtual kernel packages		linux (Ubuntu)	Undecided	Invalid
	487010	ip6table modules are not included in the -virtual kernel packages		linux (Ubuntu Hardy)	Low	Fix Released

Bug #488328: screen brightness won't come back when I open the lid

Summary				In	Importance	Status
	488328	screen brightness won't come back when I open the lid		linux (Ubuntu)	Medium	Fix Released
	488328	screen brightness won't come back when I open the lid		Linux	Medium	Fix Released

Bug #492056: Saitek X52 Joystick does not work

Summary				In	Importance	Status
	492056	Saitek X52 Joystick does not work		linux (Ubuntu)	Medium	Fix Released

Bug #494565: support ramdiskless boot for relevant kvm drive interfaces in -virtual

Summary				In	Importance	Status
	494565	support ramdiskless boot for relevant kvm drive interfaces in -virtual		linux (Ubuntu)	High	Fix Released
	494565	support ramdiskless boot for relevant kvm drive interfaces in -virtual		linux (Ubuntu Lucid)	High	Fix Released

Bug #507211: linux (2.6.32-10.14) - "delay first lookup of the battery until first use" confuses KDE battery management

Summary				In	Importance	Status
	507211	linux (2.6.32-10.14) - "delay first lookup of the battery until first use" confuses KDE battery management		linux (Ubuntu)	Medium	Fix Released

Bug #509808: Enable user namespaces in Lucid server kernel

Summary				In	Importance	Status
	509808	Enable user namespaces in Lucid server kernel		linux (Ubuntu)	Wishlist	Fix Released

Bug #513241: please enable CONFIG_TIMER_STATS on imx51

Summary				In	Importance	Status
	513241	please enable CONFIG_TIMER_STATS on imx51		linux-fsl-imx51 (Ubuntu)	Medium	Fix Released
	513241	please enable CONFIG_TIMER_STATS on imx51		linux-fsl-imx51 (Ubuntu Lucid)	Medium	Fix Released

Bug #516777: HP Touchsmart tm2 requires newer wacom driver

Summary				In	Importance	Status
	516777	HP Touchsmart tm2 requires newer wacom driver		linux (Ubuntu)	Low	Fix Released

Bug #523112: Intel Atom CPU can oops because of bug listed in Intel errata AAH41 and AAE44

Summary				In	Importance	Status
	523112	Intel Atom CPU can oops because of bug listed in Intel errata AAH41 and AAE44		linux (Ubuntu)	Medium	Fix Released
	523112	Intel Atom CPU can oops because of bug listed in Intel errata AAH41 and AAE44		linux (Ubuntu Hardy)	Medium	Fix Released

Bug #524849: x86_32 NX support breaks user-mode-linux

Summary				In	Importance	Status
	524849	x86_32 NX support breaks user-mode-linux		linux (Ubuntu)	Undecided	Fix Released
	524849	x86_32 NX support breaks user-mode-linux		user-mode-linux (Ubuntu)	Undecided	Fix Released

Bug #524893: versatile: Can't boot initramfses

		In	Importance	Status
524893	versatile: Can't boot initramfses	linux (Ubuntu)	Low	Fix Released
524893	versatile: Can't boot initramfses	qemu-kvm (Ubuntu)	Low	Fix Released
524893	versatile: Can't boot initramfses	linux (Ubuntu Lucid)	Low	Fix Released
524893	versatile: Can't boot initramfses	qemu-kvm (Ubuntu Lucid)	Low	Fix Released
524893	versatile: Can't boot initramfses	android (Ubuntu)	High	Fix Released
524893	versatile: Can't boot initramfses	android (Ubuntu Lucid)	Undecided	Won't Fix

Bug #527837: Debug packages vanish after 14 days

Summary				In	Importance	Status
	527837	Debug packages vanish after 14 days		linux (Ubuntu)	Wishlist	Fix Released
	527837	Debug packages vanish after 14 days		linux (Ubuntu Karmic)	Wishlist	Won't Fix

Bug #534277: disable OABI_COMPAT

Summary				In	Importance	Status
	534277	disable OABI_COMPAT		linux-mvl-dove (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2009122...
MLIST: [oss-security] 2009122...
MLIST: [oss-security] 2009123...
CONFIRM: https://bugzilla.redha...
REDHAT: RHSA-2010:0019
REDHAT: RHSA-2010:0020
BID: 37523
SECTRACK: 1023420
SECUNIA: 38031
REDHAT: RHSA-2010:0041
REDHAT: RHSA-2010:0095
DEBIAN: DSA-1996
FEDORA: FEDORA-2010-1787
REDHAT: RHSA-2010:0111
SUSE: SUSE-SA:2010:012
SUSE: SUSE-SA:2010:010
SECUNIA: 38492
SUSE: SUSE-SA:2010:005
SECUNIA: 38276
SUSE: SUSE-SA:2010:007
SECUNIA: 38296
DEBIAN: DSA-2005
REDHAT: RHSA-2010:0053
MANDRIVA: MDVSA-2010:066
SECUNIA: 38610
SUSE: SUSE-SA:2010:014
SECUNIA: 38779
XF: kernel-edriver-unspeci...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...