CVE: CAN-2004-0535
Updated: Thu, 12 Aug 2004 10:59:22 +0900
Summary: The e1000 driver for Linux kernel 2.4.26 and earlier does not
         properly initialize memory before using it, which allows local 
	 users to read portions of kernel memory. NOTE: this issue was 
	 originally incorrectly reported as a "buffer overflow" by some 
	 sources.  (text:CAN-2004-535)
Priority: Low
Status: Closed
Source: FEDORA-2004-186, RHSA-2004:413-01
Link: http://www.ultramonkey.org/news_archive.shtml#2004062601
Resolved In:
  Kernel: 2.4.27-pre1
  Patch: http://linux.bkbits.net:8080/linux-2.4/cset@1.1359.1.12??nav=index.html
  Red Hat Linux 7.3:
         Vendor:      None (EOL)
         UltraMonkey: kernel-2.4.20-31.9.um.1
  Red Hat Linux 8.0:
         Vendor:      None (EOL)
         UltraMonkey: kernel-2.4.20-31.9.um.1
  Red Hat Linux 9:
         Vendor:      None (EOL)
         UltraMonkey: kernel-2.4.20-31.9.um.1
  Fedora Core 1:
         Vendor:      kernel-2.4.22-1.2194.nptl
         UltraMonkey: kernel-2.4.22-1.2194.nptl.um.1
  Red Hat Enterprise Linux 3:
         Vendor:      kernel-2.4.21-15.0.4.EL
         UltraMonkey: kernel-2.4.21-15.0.2.EL.um.1
  Debian Woody:
         Vendor:      None
         UltraMonkey: kernel-image-2.4.22-1-ipvs_2.4.22-7-7woody.um.4
  Debian Sid:
         Vendor:      kernel-source-2.4.26-2
         UltraMonkey: kernel-image-2.4.22-1-ipvs_2.4.22-7-7.um.4