CVE-2009-1389

Publication date 16 June 2009

Last updated 24 July 2024

Description

Buffer overflow in the RTL8169 NIC driver (drivers/net/r8169.c) in the Linux kernel before 2.6.30 allows remote attackers to cause a denial of service (kernel memory corruption and crash) via a long packet.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
linux	9.04 jaunty	Fixed 2.6.28-14.47
	8.10 intrepid	Fixed 2.6.27-14.37
	8.04 LTS hardy	Fixed 2.6.24-24.57
	6.06 LTS dapper	Not in release
linux-source-2.6.15	9.04 jaunty	Not in release
	8.10 intrepid	Not in release
	8.04 LTS hardy	Not in release
	6.06 LTS dapper	Fixed 2.6.15-54.78

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
linux	Upstream: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=fdd7b4c3302c93f6833e338903ea77245eb510b4

References

Related Ubuntu Security Notices (USN)

USN-807-1
Linux kernel vulnerabilities
28 July 2009

Other references

https://www.cve.org/CVERecord?id=CVE-2009-1389