| Name | CVE-2009-4538 |
| Description | drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to have an unspecified impact via crafted packets, a related issue to CVE-2009-4537. |
| Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
| References | DSA-1996-1, DSA-2005-1 |
| Debian Bugs | 564114 |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|---|---|---|---|---|---|
| linux-2.6 | source | etch | (not affected) | |||
| linux-2.6 | source | lenny | 2.6.26-21lenny3 | DSA-1996-1 | ||
| linux-2.6 | source | (unstable) | 2.6.32-6 | low | 564114 | |
| linux-2.6.24 | source | etch | 2.6.24-6~etchnhalf.9etch3 | DSA-2005-1 | ||
| linux-2.6.24 | source | (unstable) | (unfixed) | low |
[etch] - linux-2.6 <not-affected> (does not have e1000e driver)
just like CVE-2009-4536 but was reported later