Upstream information

CVE-2009-3613 at MITRE

Description

The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote attackers to cause a denial of service (IOMMU space exhaustion and system crash) by using jumbo frames for a large amount of network traffic, as demonstrated by a flood ping.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v2 Scores
  National Vulnerability Database
Base Score 7.8
Vector AV:N/AC:L/Au:N/C:N/I:N/A:C
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact None
Integrity Impact None
Availability Impact Complete
SUSE Bugzilla entry: 547131 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Realtime 10 SP2
  • ib-bonding-kmp-rt >= 0.9.0_2.6.22.19_0.35-1.21.1
  • ib-bonding-kmp-rt_bigsmp >= 0.9.0_2.6.22.19_0.35-1.21.1
  • ib-bonding-kmp-rt_debug >= 0.9.0_2.6.22.19_0.35-1.21.1
  • ib-bonding-kmp-rt_timing >= 0.9.0_2.6.22.19_0.35-1.21.1
  • kernel-rt >= 2.6.22.19-0.35
  • kernel-rt_bigsmp >= 2.6.22.19-0.35
  • kernel-rt_debug >= 2.6.22.19-0.35
  • kernel-rt_timing >= 2.6.22.19-0.35
  • kernel-source >= 2.6.22.19-0.35
  • kernel-syms >= 2.6.22.19-0.35
  • ofed >= 1.3-0.33.4
  • ofed-cxgb3-NIC-kmp-rt >= 1.3_2.6.22.19_0.35-0.18.1
  • ofed-cxgb3-NIC-kmp-rt_bigsmp >= 1.3_2.6.22.19_0.35-0.18.1
  • ofed-cxgb3-NIC-kmp-rt_debug >= 1.3_2.6.22.19_0.35-0.18.1
  • ofed-cxgb3-NIC-kmp-rt_timing >= 1.3_2.6.22.19_0.35-0.18.1
  • ofed-doc >= 1.3-0.33.4
  • ofed-kmp-rt >= 1.3_2.6.22.19_0.35-0.33.4
  • ofed-kmp-rt_bigsmp >= 1.3_2.6.22.19_0.35-0.33.4
  • ofed-kmp-rt_debug >= 1.3_2.6.22.19_0.35-0.33.4
  • ofed-kmp-rt_timing >= 1.3_2.6.22.19_0.35-0.33.4
sles10-sp2.x86
sles10-sp2.x86-64
ZYPP Patch Nr: 6705
SUSE Linux Enterprise Realtime 10 SP2
  • ib-bonding-kmp-rt >= 0.9.0_2.6.22.19_0.35-1.21.1
  • ib-bonding-kmp-rt_debug >= 0.9.0_2.6.22.19_0.35-1.21.1
  • ib-bonding-kmp-rt_timing >= 0.9.0_2.6.22.19_0.35-1.21.1
  • kernel-rt >= 2.6.22.19-0.35
  • kernel-rt_debug >= 2.6.22.19-0.35
  • kernel-rt_timing >= 2.6.22.19-0.35
  • kernel-source >= 2.6.22.19-0.35
  • kernel-syms >= 2.6.22.19-0.35
  • ofed >= 1.3-0.33.4
  • ofed-cxgb3-NIC-kmp-rt >= 1.3_2.6.22.19_0.35-0.18.1
  • ofed-cxgb3-NIC-kmp-rt_debug >= 1.3_2.6.22.19_0.35-0.18.1
  • ofed-cxgb3-NIC-kmp-rt_timing >= 1.3_2.6.22.19_0.35-0.18.1
  • ofed-doc >= 1.3-0.33.4
  • ofed-kmp-rt >= 1.3_2.6.22.19_0.35-0.33.4
  • ofed-kmp-rt_debug >= 1.3_2.6.22.19_0.35-0.33.4
  • ofed-kmp-rt_timing >= 1.3_2.6.22.19_0.35-0.33.4
sles10-sp2.x86
sles10-sp2.x86-64
ZYPP Patch Nr: 6705
SUSE Linux Enterprise SDK 10 SP2
  • kernel-kdump >= 2.6.16.60-0.42.8
sle10-sp2-sdk.ppc
sles10-sp2-debuginfo.ppc
sles10-sp2.ppc
ZYPP Patch Nr: 6728
SUSE Linux Enterprise SDK 10 SP2
  • kernel-debug >= 2.6.16.60-0.42.8
sle10-sp2-sdk.ia64
sles10-sp2.ia64
sles10-sp2-debuginfo.ia64
ZYPP Patch Nr: 6727
SUSE Linux Enterprise SDK 10 SP2
  • kernel-debug >= 2.6.16.60-0.42.8
  • kernel-kdump >= 2.6.16.60-0.42.8
  • kernel-xen >= 2.6.16.60-0.42.8
  • kernel-xenpae >= 2.6.16.60-0.42.8
sles10-sp2-debuginfo.x86
sle10-sp2-sdk.x86
sled10-sp2.x86
sles10-sp2.x86
ZYPP Patch Nr: 6726
SUSE Linux Enterprise Server for SAP 10 SP2
  • kernel-debug >= 2.6.16.60-0.42.8
  • kernel-default >= 2.6.16.60-0.42.8
  • kernel-kdump >= 2.6.16.60-0.42.8
  • kernel-smp >= 2.6.16.60-0.42.8
  • kernel-source >= 2.6.16.60-0.42.8
  • kernel-syms >= 2.6.16.60-0.42.8
  • kernel-xen >= 2.6.16.60-0.42.8
sled10-sp2.x86-64
sles10-sp2-debuginfo.x86-64
sle10-sp2-sdk.x86-64
sles10-sp2.x86-64
ZYPP Patch Nr: 6730
SUSE Linux Enterprise SDK 10 SP2
  • kernel-debug >= 2.6.16.60-0.42.8
  • kernel-kdump >= 2.6.16.60-0.42.8
  • kernel-xen >= 2.6.16.60-0.42.8
sled10-sp2.x86-64
sles10-sp2-debuginfo.x86-64
sle10-sp2-sdk.x86-64
sles10-sp2.x86-64
ZYPP Patch Nr: 6730