• info
• discussion
• exploit
• solution
• references

Linux Kernel e1000 Ethernet Card Driver Kernel Memory Disclosure Vulnerability

Solution:
The vendor has released an upgrade that deals with this issue. Please see the referenced vendor home page for more information.

SGI has made available Patch 10096 and advisory (20040804-01-U), correcting this and other vulnerabilities for systems running SGI ProPack 3.

Patch 10096 is available from:
ftp://patches.sgi.com/support/free/security/patches/ProPack/3/

Please see the referenced advisory for further details regarding obtaining and applying appropriate updates.

Trustix Secure Linux has released advisory TSLSA-2004-0041 to address this, and other issues. Please see the referenced advisory for further information.

Mandrake has released an advisory(MDKSA-2004:062) and updates to address this issue in Mandrake Linux. Users are advised to read the referenced advisory for further details regarding obtaining and applying appropriate updates.

Conectiva has released an advisory (CLA-2004:845) and fixes to address this and other issues in Conectiva Linux versions 8, and 9. Please see the referenced advisory for further details regarding obtaining and applying appropriate fixes.

EnGarde Linux has released advisory ESA-20040621-005 dealing with this issue. Please see the referenced advisory for further information.

RedHat has released an advisory (FEDORA-2004-186) to address this and other issues in Fedora Core 1. Please see the referenced advisory for more information.

SUSE has released advisory SUSE-SA:2004:020 to address this and other issues. Please see the referenced advisory for further information and fixes.

Gentoo Linux has released advisory GLSA 200407-02 addressing this and other issues. Please see the referenced advisory for further information about this issue and information on upgrading packages using emerge.

Red Hat has released advisory RHSA-2004:418-05 and RHSA-2004:413-07 and fixes to address this and other issues on Red Hat Linux Enterprise 2.1 and 3.0 platforms. Customers who are affected by this issue are advised to apply the appropriate updates. Customers subscribed to the Red Hat Network may apply the appropriate fixes using the Red Hat Update Agent (up2date). Please see referenced advisory for additional information.

Red Hat has released advisory RHSA-2004:327-09 along with fixes to address this issue for Red Hat Enterprise Linux 2.1 for Itanium processors. Please see the referenced advisory for further information.


Linux kernel 2.4.18

• Conectiva devfsd-2.4.19-1U80_22cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/devfsd-2.4.19-1U80_22cl.i38 6.rpm


• Conectiva kernel-2.4.19-1U80_22cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/kernel-2.4.19-1U80_22cl.i38 6.rpm


• Conectiva kernel-2.4.19-1U80_22cl.i586.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/kernel-2.4.19-1U80_22cl.i58 6.rpm


• Conectiva kernel-2.4.19-1U80_22cl.i686.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/kernel-2.4.19-1U80_22cl.i68 6.rpm


• Conectiva kernel-BOOT-2.4.19-1U80_22cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/kernel-BOOT-2.4.19-1U80_22c l.i386.rpm


• Conectiva kernel-doc-2.4.19-1U80_22cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/kernel-doc-2.4.19-1U80_22cl .i386.rpm


• Conectiva kernel-enterprise-2.4.19-1U80_22cl.i686.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/kernel-enterprise-2.4.19-1U 80_22cl.i686.rpm


• Conectiva kernel-headers-2.4.19-1U80_22cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/kernel-headers-2.4.19-1U80_ 22cl.i386.rpm


• Conectiva kernel-rbc-2.4.19-1U80_22cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/kernel-rbc-2.4.19-1U80_22cl .i386.rpm


• Conectiva kernel-smp-2.4.19-1U80_22cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/kernel-smp-2.4.19-1U80_22cl .i386.rpm


• Conectiva kernel-smp-2.4.19-1U80_22cl.i586.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/kernel-smp-2.4.19-1U80_22cl .i586.rpm


• Conectiva kernel-smp-2.4.19-1U80_22cl.i686.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/kernel-smp-2.4.19-1U80_22cl .i686.rpm


• Conectiva kernel-source-2.4.19-1U80_22cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/8/RPMS/kernel-source-2.4.19-1U80_2 2cl.i386.rpm


• SuSE k_deflt-2.4.18-303.i386.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/8.0/images/k_deflt-2.4.18-303. i386.rpm


• SuSE k_i386-2.4.18-303.i386.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/8.0/images/k_i386-2.4.18-303.i 386.rpm


• SuSE k_psmp-2.4.18-303.i386.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/8.0/images/k_psmp-2.4.18-303.i 386.rpm


• SuSE k_smp-2.4.18-303.i386.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/8.0/images/k_smp-2.4.18-303.i3 86.rpm


• SuSE kernel-source-2.4.18.SuSE-303.i386.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/8.0/d3/kernel-source-2.4.18.Su SE-303.i386.rpm

Linux kernel 2.4.21

• Conectiva devfsd-2.4.21-31301U90_16cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/devfsd-2.4.21-31301U90_16cl .i386.rpm


• Conectiva kernel24-2.4.21-31301U90_16cl.athlon.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-2.4.21-31301U90_16 cl.athlon.rpm


• Conectiva kernel24-2.4.21-31301U90_16cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-2.4.21-31301U90_16 cl.i386.rpm


• Conectiva kernel24-2.4.21-31301U90_16cl.i586.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-2.4.21-31301U90_16 cl.i586.rpm


• Conectiva kernel24-2.4.21-31301U90_16cl.i686.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-2.4.21-31301U90_16 cl.i686.rpm


• Conectiva kernel24-2.4.21-31301U90_16cl.pentium4.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-2.4.21-31301U90_16 cl.pentium4.rpm


• Conectiva kernel24-BOOT-2.4.21-31301U90_16cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-BOOT-2.4.21-31301U 90_16cl.i386.rpm


• Conectiva kernel24-doc-2.4.21-31301U90_16cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-doc-2.4.21-31301U9 0_16cl.i386.rpm


• Conectiva kernel24-enterprise-2.4.21-31301U90_16cl.athlon.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-enterprise-2.4.21- 31301U90_16cl.athlon.rpm


• Conectiva kernel24-enterprise-2.4.21-31301U90_16cl.i686.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-enterprise-2.4.21- 31301U90_16cl.i686.rpm


• Conectiva kernel24-enterprise-2.4.21-31301U90_16cl.pentium4.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-enterprise-2.4.21- 31301U90_16cl.pentium4.rpm


• Conectiva kernel24-headers-2.4.21-31301U90_16cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-headers-2.4.21-313 01U90_16cl.i386.rpm


• Conectiva kernel24-rbc-2.4.21-31301U90_16cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-rbc-2.4.21-31301U9 0_16cl.i386.rpm


• Conectiva kernel24-smp-2.4.21-31301U90_16cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-smp-2.4.21-31301U9 0_16cl.i386.rpm


• Conectiva kernel24-smp-2.4.21-31301U90_16cl.i586.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-smp-2.4.21-31301U9 0_16cl.i586.rpm


• Conectiva kernel24-smp-2.4.21-31301U90_16cl.i686.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-smp-2.4.21-31301U9 0_16cl.i686.rpm


• Conectiva kernel24-smp-2.4.21-31301U90_16cl.pentium4.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-smp-2.4.21-31301U9 0_16cl.pentium4.rpm


• Conectiva kernel24-source-2.4.21-31301U90_16cl.i386.rpm
  ftp://atualizacoes.conectiva.com.br/9/RPMS/kernel24-source-2.4.21-3130 1U90_16cl.i386.rpm


• SuSE k_athlon-2.4.21-231.i586.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/k_athlon-2.4.21-2 31.i586.rpm


• SuSE k_athlon-2.4.21-231.i586.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_athlon-2.4.21-2 31.i586.rpm


• SuSE k_deflt-2.4.21-231.i586.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/k_deflt-2.4.21-23 1.i586.rpm


• SuSE k_deflt-2.4.21-231.i586.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_deflt-2.4.21-23 1.i586.rpm


• SuSE k_deflt-2.4.21-231.x86_64.rpm
  x86-64 Platform
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/k_deflt-2.4.2 1-231.x86_64.rpm


• SuSE k_psmp-2.4.21-231.i586.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/k_psmp-2.4.21-231 .i586.rpm


• SuSE k_smp-2.4.21-231.i586.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/k_smp-2.4.21-231. i586.rpm


• SuSE k_smp-2.4.21-231.i586.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_smp-2.4.21-231. i586.rpm


• SuSE k_smp-2.4.21-231.x86_64.rpm
  x86-64 Platform
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/k_smp-2.4.21- 231.x86_64.rpm


• SuSE k_smp4G-2.4.21-231.i586.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_smp4G-2.4.21-23 1.i586.rpm


• SuSE k_um-2.4.21-231.i586.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/k_um-2.4.21-231.i 586.rpm


• SuSE kernel-source-2.4.21-231.i586.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/kernel-source-2.4 .21-231.i586.rpm


• SuSE kernel-source-2.4.21-231.i586.rpm
  x86 Platform
  ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/kernel-source-2.4 .21-231.i586.rpm


• SuSE kernel-source-2.4.21-231.x86_64.rpm
  x86-64 Platform
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/kernel-source -2.4.21-231.x86_64.rpm