CVE: CAN-2003-0001 Updated: Mon, 24 May 2004 20:44:10 +0900 Summary: Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak. (text:CAN-2003-0001) Priority: High Status: Closed Source: RHSA-2003:025-20, DSA-311-1 Link: http://www.debian.org/security/2003/dsa-311 Resolved In: Kernel: 2.4.21-pre5 Patch: http://linux.bkbits.net:8080/linux-2.4/cset@1.930.35.7??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.43??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.44??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.45??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.46??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.47??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.48??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.49??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.50??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.51??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.52??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.53??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.54??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.55??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.57??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.58??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.59??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.60??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.61??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.62??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.63??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.64??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.65??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.66??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.67??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.68??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.69??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.70??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.71??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.72??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.82??nav=index.html http://linux.bkbits.net:8080/linux-2.4/cset@1.930.9.84??nav=index.html Red Hat Linux 7.3: Vendor: kernel-2.4.18-24.7 UltraMonkey: kernel-2.4.20-18.7.um.1 Red Hat Linux 8.0: Vendor: kernel-2.4.18-24.8 UltraMonkey: kernel-2.4.20-18.8.um.1 Red Hat Linux 9: Vendor: kernel-2.4.20-8 (initial release) UltraMonkey: kernel-2.4.20-19.9.um.1 (initial release) Fedora Core 1: Vendor: Not Vulnerable (>= 2.4.21-pre5) UltraMonkey: Not Vulnerable (>= 2.4.21-pre5) Red Hat Enterprise Linux 3: Vendor: Not Vulnerable (>= 2.4.21-pre5) UltraMonkey: Not Vulnerable (>= 2.4.21-pre5) Debian Woody: Vendor: kernel-source-2.4.18_2.4.18-7 UltraMonkey: 2.4.20-7.woody.um.1 (initial release) Debian Sid: Vendor: kernel-source-2.4.20_2.4.20-5 UltraMonkey: 2.4.20-7.sid.um.1 (initial release)