What Are You Looking For?

Sign Up
Date:         Mon, 11 Jan 2010 11:21:02 -0600
Reply-To:     Troy Dawson 
Sender:       Security Errata for Scientific Linux
              
From:         Troy Dawson 
Subject:      Security ERRATA Important: kernel on SL4.x i386/x86_64
Comments: To: "scientific-linux-errata@fnal.gov"
          

Synopsis:	Important: kernel security update
Issue date:	2010-01-07
CVE Names:	CVE-2009-4536 CVE-2009-4537 CVE-2009-4538

CVE-2009-4537 kernel: r8169 issue reported at 26c3
CVE-2009-4538 kernel: e1000e frame fragment issue
CVE-2009-4536 kernel: e1000 issue reported at 26c3

This update fixes the following security issues:

* a flaw was found in each of the following Intel PRO/1000 Linux drivers 
in the Linux kernel: e1000 and e1000e. A remote attacker using packets 
larger than the MTU could bypass the existing fragment check, resulting 
in partial, invalid frames being passed to the network stack. These 
flaws could also possibly be used to trigger a remote denial of service.
(CVE-2009-4536, CVE-2009-4538, Important)

* a flaw was found in the Realtek r8169 Ethernet driver in the Linux
kernel. Receiving overly-long frames with network cards supported by 
this driver could possibly result in a remote denial of service. 
(CVE-2009-4537, Important)

The system must be rebooted for this update to take effect.

SL 4.x

     SRPMS:
kernel-2.6.9-89.0.19.EL.src.rpm
     i386:
kernel-2.6.9-89.0.19.EL.i686.rpm
kernel-devel-2.6.9-89.0.19.EL.i686.rpm
kernel-doc-2.6.9-89.0.19.EL.noarch.rpm
kernel-hugemem-2.6.9-89.0.19.EL.i686.rpm
kernel-hugemem-devel-2.6.9-89.0.19.EL.i686.rpm
kernel-smp-2.6.9-89.0.19.EL.i686.rpm
kernel-smp-devel-2.6.9-89.0.19.EL.i686.rpm
kernel-xenU-2.6.9-89.0.19.EL.i686.rpm
kernel-xenU-devel-2.6.9-89.0.19.EL.i686.rpm
   Dependencies:
kernel-module-fuse-2.6.9-89.0.19.EL-2.7.3-1.SL.i686.rpm
kernel-module-fuse-2.6.9-89.0.19.ELhugemem-2.7.3-1.SL.i686.rpm
kernel-module-fuse-2.6.9-89.0.19.ELsmp-2.7.3-1.SL.i686.rpm
kernel-module-fuse-2.6.9-89.0.19.ELxenU-2.7.3-1.SL.i686.rpm
kernel-module-ipw3945-2.6.9-89.0.19.EL-1.1.0-1.SL4.i686.rpm
kernel-module-ipw3945-2.6.9-89.0.19.ELhugemem-1.1.0-1.SL4.i686.rpm
kernel-module-ipw3945-2.6.9-89.0.19.ELsmp-1.1.0-1.SL4.i686.rpm
kernel-module-ipw3945-2.6.9-89.0.19.ELxenU-1.1.0-1.SL4.i686.rpm
kernel-module-madwifi-2.6.9-89.0.19.EL-0.9.4-10.sl4.i686.rpm
kernel-module-madwifi-2.6.9-89.0.19.ELhugemem-0.9.4-10.sl4.i686.rpm
kernel-module-madwifi-2.6.9-89.0.19.ELsmp-0.9.4-10.sl4.i686.rpm
kernel-module-madwifi-hal-2.6.9-89.0.19.EL-0.9.4-10.sl4.i686.rpm
kernel-module-madwifi-hal-2.6.9-89.0.19.ELhugemem-0.9.4-10.sl4.i686.rpm
kernel-module-madwifi-hal-2.6.9-89.0.19.ELsmp-0.9.4-10.sl4.i686.rpm
kernel-module-ndiswrapper-2.6.9-89.0.19.EL-1.41-1.SL.i686.rpm
kernel-module-ndiswrapper-2.6.9-89.0.19.ELhugemem-1.41-1.SL.i686.rpm
kernel-module-ndiswrapper-2.6.9-89.0.19.ELsmp-1.41-1.SL.i686.rpm
kernel-module-ndiswrapper-2.6.9-89.0.19.ELxenU-1.41-1.SL.i686.rpm
kernel-module-openafs-2.6.9-89.0.19.EL-1.4.7-68.2.SL4.i686.rpm
kernel-module-openafs-2.6.9-89.0.19.ELhugemem-1.4.7-68.2.SL4.i686.rpm
kernel-module-openafs-2.6.9-89.0.19.ELsmp-1.4.7-68.2.SL4.i686.rpm
kernel-module-openafs-2.6.9-89.0.19.ELxenU-1.4.7-68.2.SL4.i686.rpm
kernel-module-r1000-2.6.9-89.0.19.EL-2.2-2.SL4x.i686.rpm
kernel-module-r1000-2.6.9-89.0.19.ELhugemem-2.2-2.SL4x.i686.rpm
kernel-module-r1000-2.6.9-89.0.19.ELsmp-2.2-2.SL4x.i686.rpm
kernel-module-r1000-2.6.9-89.0.19.ELxenU-2.2-2.SL4x.i686.rpm
kernel-module-squashfs-2.6.9-89.0.19.EL-3.1.2-3.i686.rpm
kernel-module-squashfs-2.6.9-89.0.19.ELhugemem-3.1.2-3.i686.rpm
kernel-module-squashfs-2.6.9-89.0.19.ELsmp-3.1.2-3.i686.rpm
kernel-module-squashfs-2.6.9-89.0.19.ELxenU-3.1.2-3.i686.rpm
kernel-module-unionfs-2.6.9-89.0.19.EL-1.1.5-3.i686.rpm
kernel-module-unionfs-2.6.9-89.0.19.ELsmp-1.1.5-3.i686.rpm

     x86_64:
kernel-2.6.9-89.0.19.EL.x86_64.rpm
kernel-devel-2.6.9-89.0.19.EL.x86_64.rpm
kernel-doc-2.6.9-89.0.19.EL.noarch.rpm
kernel-largesmp-2.6.9-89.0.19.EL.x86_64.rpm
kernel-largesmp-devel-2.6.9-89.0.19.EL.x86_64.rpm
kernel-smp-2.6.9-89.0.19.EL.x86_64.rpm
kernel-smp-devel-2.6.9-89.0.19.EL.x86_64.rpm
kernel-xenU-2.6.9-89.0.19.EL.x86_64.rpm
kernel-xenU-devel-2.6.9-89.0.19.EL.x86_64.rpm
   Dependencies:
kernel-module-fuse-2.6.9-89.0.19.EL-2.7.3-1.SL.x86_64.rpm
kernel-module-fuse-2.6.9-89.0.19.ELlargesmp-2.7.3-1.SL.x86_64.rpm
kernel-module-fuse-2.6.9-89.0.19.ELsmp-2.7.3-1.SL.x86_64.rpm
kernel-module-fuse-2.6.9-89.0.19.ELxenU-2.7.3-1.SL.x86_64.rpm
kernel-module-ipw3945-2.6.9-89.0.19.EL-1.1.0-1.SL4.x86_64.rpm
kernel-module-ipw3945-2.6.9-89.0.19.ELlargesmp-1.1.0-1.SL4.x86_64.rpm
kernel-module-ipw3945-2.6.9-89.0.19.ELsmp-1.1.0-1.SL4.x86_64.rpm
kernel-module-ipw3945-2.6.9-89.0.19.ELxenU-1.1.0-1.SL4.x86_64.rpm
kernel-module-madwifi-2.6.9-89.0.19.EL-0.9.4-10.sl4.x86_64.rpm
kernel-module-madwifi-2.6.9-89.0.19.ELlargesmp-0.9.4-10.sl4.x86_64.rpm
kernel-module-madwifi-2.6.9-89.0.19.ELsmp-0.9.4-10.sl4.x86_64.rpm
kernel-module-madwifi-hal-2.6.9-89.0.19.EL-0.9.4-10.sl4.x86_64.rpm
kernel-module-madwifi-hal-2.6.9-89.0.19.ELlargesmp-0.9.4-10.sl4.x86_64.rpm
kernel-module-madwifi-hal-2.6.9-89.0.19.ELsmp-0.9.4-10.sl4.x86_64.rpm
kernel-module-ndiswrapper-2.6.9-89.0.19.EL-1.41-1.SL.x86_64.rpm
kernel-module-ndiswrapper-2.6.9-89.0.19.ELlargesmp-1.41-1.SL.x86_64.rpm
kernel-module-ndiswrapper-2.6.9-89.0.19.ELsmp-1.41-1.SL.x86_64.rpm
kernel-module-ndiswrapper-2.6.9-89.0.19.ELxenU-1.41-1.SL.x86_64.rpm
kernel-module-openafs-2.6.9-89.0.19.EL-1.4.7-68.2.SL4.x86_64.rpm
kernel-module-openafs-2.6.9-89.0.19.ELlargesmp-1.4.7-68.2.SL4.x86_64.rpm
kernel-module-openafs-2.6.9-89.0.19.ELsmp-1.4.7-68.2.SL4.x86_64.rpm
kernel-module-openafs-2.6.9-89.0.19.ELxenU-1.4.7-68.2.SL4.x86_64.rpm
kernel-module-r1000-2.6.9-89.0.19.EL-2.2-2.SL4x.x86_64.rpm
kernel-module-r1000-2.6.9-89.0.19.ELlargesmp-2.2-2.SL4x.x86_64.rpm
kernel-module-r1000-2.6.9-89.0.19.ELsmp-2.2-2.SL4x.x86_64.rpm
kernel-module-r1000-2.6.9-89.0.19.ELxenU-2.2-2.SL4x.x86_64.rpm
kernel-module-squashfs-2.6.9-89.0.19.EL-3.1.2-3.x86_64.rpm
kernel-module-squashfs-2.6.9-89.0.19.ELlargesmp-3.1.2-3.x86_64.rpm
kernel-module-squashfs-2.6.9-89.0.19.ELsmp-3.1.2-3.x86_64.rpm
kernel-module-squashfs-2.6.9-89.0.19.ELxenU-3.1.2-3.x86_64.rpm
kernel-module-unionfs-2.6.9-89.0.19.EL-1.1.5-3.x86_64.rpm
kernel-module-unionfs-2.6.9-89.0.19.ELsmp-1.1.5-3.x86_64.rpm

-Connie Sieh
-Troy Dawson

SciLinux: CVE-2009-4536 Important: kernel SL4.x i386/x86_64

Important: kernel security update

Summary

CVE-2009-4536 kernel: e1000 issue reported at 26c3This update fixes the following security issues:* a flaw was found in each of the following Intel PRO/1000 Linux driversin the Linux kernel: e1000 and e1000e. A remote attacker using packetslarger than the MTU could bypass the existing fragment check, resultingin partial, invalid frames being passed to the network stack. Theseflaws could also possibly be used to trigger a remote denial of service.(CVE-2009-4536, CVE-2009-4538, Important)* a flaw was found in the Realtek r8169 Ethernet driver in the Linuxkernel. Receiving overly-long frames with network cards supported bythis driver could possibly result in a remote denial of service.(CVE-2009-4537, Important)The system must be rebooted for this update to take effect.



Security Fixes

Severity
Issued Date: : 2010-01-07
CVE Names: CVE-2009-4536 CVE-2009-4537 CVE-2009-4538
CVE-2009-4537 kernel: r8169 issue reported at 26c3
CVE-2009-4538 kernel: e1000e frame fragment issue

Related News

Krasue RAT Malware Hides on Linux Servers Using Embedded Rootkits

Dec 7, 2023

The Present & Future of Kernel Security: Linux's Unique Method for Securing Code

Dec 8, 2023

Kali vs. ParrotOS: 2 Versatile Linux Distros for Security Pros

Dec 9, 2023

Kali Linux 2023.4 Released With New Hacking Tools

Dec 6, 2023

News

Advisories

HOWTOs

Features

Password Guessing as an Attack Vector
Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management

About Us

Powered By

Footer Logo