Mission and Overview
NVD is the U.S. government repository of standards based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance (e.g. FISMA).
Resource Status
NVD contains:
CVE Vulnerabilities
56363
Checklists
222
US-CERT Alerts
246
US-CERT Vuln Notes
2720
OVAL Queries
8140
CPE Names
73033

Last updated: Sat May 18 17:26:52 EDT 2013

CVE Publication rate: 11.57

Email List

NVD provides four mailing lists to the public. For information and subscription instructions please visit NVD Mailing Lists

Workload Index

Vulnerability Workload Index: 6.09

About Us
NVD is a product of the NIST Computer Security Division and is sponsored by the Department of Homeland Security's National Cyber Security Division. It supports the U.S. government multi-agency (OSD, DHS, NSA, DISA, and NIST) Information Security Automation Program. It is the U.S. government content repository for the Security Content Automation Protocol (SCAP).

National Cyber Awareness System

Vulnerability Summary for CVE-2009-1385

Original release date:06/04/2009
Last revised:03/19/2012
Source: US-CERT/NIST

Overview

Integer underflow in the e1000_clean_rx_irq function in drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel before 2.6.30-rc8, the e1000e driver in the Linux kernel, and Intel Wired Ethernet (aka e1000) before 7.5.5 allows remote attackers to cause a denial of service (panic) via a crafted frame size.

Impact

CVSS Severity (version 2.0):
CVSS v2 Base Score:7.8 (HIGH) (AV:N/AC:L/Au:N/C:N/I:N/A:C) (legend)
Impact Subscore: 6.9
Exploitability Subscore: 10.0
CVSS Version 2 Metrics:
Access Vector: Network exploitable
Access Complexity: Low
Authentication: Not required to exploit
Impact Type:Allows disruption of serviceUnknown

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: CONFIRM
Name: https://bugzilla.redhat.com/show_bug.cgi?id=502981
Type: Patch Information; Exploit
Hyperlink:https://bugzilla.redhat.com/show_bug.cgi?id=502981
External Source: CONFIRM
Name: http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.30-rc8
Type: Advisory; Patch Information
Hyperlink:http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.30-rc8
External Source: CONFIRM
Name: http://sourceforge.net/project/shownotes.php?release_id=504022&group_id=42302
Type: Patch Information
Hyperlink:http://sourceforge.net/project/shownotes.php?release_id=504022&group_id=42302
External Source: FEDORA
Name: FEDORA-2009-6846
Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01193.html
External Source: FEDORA
Name: FEDORA-2009-6768
Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01094.html
External Source: FEDORA
Name: FEDORA-2009-6883
Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01048.html
External Source: REDHAT
Name: RHSA-2009:1550
Hyperlink:https://rhn.redhat.com/errata/RHSA-2009-1550.html
External Source: VUPEN
Name: ADV-2009-3316
Hyperlink:http://www.vupen.com/english/advisories/2009/3316
External Source: CONFIRM
Name: http://www.vmware.com/security/advisories/VMSA-2009-0016.html
Hyperlink:http://www.vmware.com/security/advisories/VMSA-2009-0016.html
External Source: UBUNTU
Name: USN-793-1
Hyperlink:http://www.ubuntu.com/usn/usn-793-1
External Source: BID
Name: 35185
Hyperlink:http://www.securityfocus.com/bid/35185
External Source: BUGTRAQ
Name: 20100625 VMSA-2010-0010 ESX 3.5 third party update for Service Console kernel
Hyperlink:http://www.securityfocus.com/archive/1/archive/1/512019/100/0/threaded
External Source: BUGTRAQ
Name: 20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components
Hyperlink:http://www.securityfocus.com/archive/1/archive/1/507985/100/0/threaded
External Source: BUGTRAQ
Name: 20090724 rPSA-2009-0111-1 kernel
Hyperlink:http://www.securityfocus.com/archive/1/archive/1/505254/100/0/threaded
External Source: REDHAT
Name: RHSA-2009:1193
Hyperlink:http://www.redhat.com/support/errata/RHSA-2009-1193.html
External Source: REDHAT
Name: RHSA-2009:1157
Hyperlink:http://www.redhat.com/support/errata/RHSA-2009-1157.html
External Source: MLIST
Name: [oss-security] 20090603 CVE-2009-1385 kernel: e1000_clean_rx_irq() denial of service
Hyperlink:http://www.openwall.com/lists/oss-security/2009/06/03/2
External Source: MANDRIVA
Name: MDVSA-2009:148
Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2009:148
External Source: MANDRIVA
Name: MDVSA-2009:135
Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2009:135
External Source: CONFIRM
Name: http://www.intel.com/support/network/sb/CS-030543.htm
Hyperlink:http://www.intel.com/support/network/sb/CS-030543.htm
External Source: DEBIAN
Name: DSA-1865
Hyperlink:http://www.debian.org/security/2009/dsa-1865
External Source: DEBIAN
Name: DSA-1844
Hyperlink:http://www.debian.org/security/2009/dsa-1844
External Source: CONFIRM
Name: http://wiki.rpath.com/Advisories:rPSA-2009-0111
Hyperlink:http://wiki.rpath.com/Advisories:rPSA-2009-0111
External Source: SECUNIA
Name: 37471
Hyperlink:http://secunia.com/advisories/37471
External Source: SECUNIA
Name: 36327
Hyperlink:http://secunia.com/advisories/36327
External Source: SECUNIA
Name: 36131
Hyperlink:http://secunia.com/advisories/36131
External Source: SECUNIA
Name: 36051
Hyperlink:http://secunia.com/advisories/36051
External Source: SECUNIA
Name: 35847
Hyperlink:http://secunia.com/advisories/35847
External Source: SECUNIA
Name: 35656
Hyperlink:http://secunia.com/advisories/35656
External Source: SECUNIA
Name: 35623
Hyperlink:http://secunia.com/advisories/35623
External Source: SECUNIA
Name: 35566
Hyperlink:http://secunia.com/advisories/35566
External Source: SECUNIA
Name: 35265
Type: Advisory
Hyperlink:http://secunia.com/advisories/35265
External Source: OVAL
Name: oval:org.mitre.oval:def:8340
Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:8340
External Source: OVAL
Name: oval:org.mitre.oval:def:11681
Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11681
External Source: OVAL
Name: oval:org.mitre.oval:def:11598
Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11598
External Source: OSVDB
Name: 54892
Hyperlink:http://osvdb.org/54892
External Source: SUSE
Name: SUSE-SA:2009:038
Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00004.html
External Source: CONFIRM
Name: http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ea30e11970a96cfe5e32c03a29332554573b4a10
Type: Advisory
Hyperlink:http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ea30e11970a96cfe5e32c03a29332554573b4a10

References to Check Content

Identifier:oval:org.mitre.oval:def:11681
Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5
Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:11681
Identifier:oval:org.mitre.oval:def:8340
Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5
Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:8340
Identifier:oval:org.mitre.oval:def:11598
Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5
Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:11598

Vulnerable software and versions

Nav control imageConfiguration 1
spacerNav control imageOR
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.20.20
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.20.19
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.19.7
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.20.16
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.19.5
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.19.6
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.19.4
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.5
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.23_rc1
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.24_rc4
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.24_rc5
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.4.36.4
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.4.36.5
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.4.36.1
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.4.36
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.18
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.4.36.3
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.23
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.4.36.2
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.16
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.17
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22_rc7
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.21.6
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22_rc1
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.23.10
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.21.7
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.24_rc1
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.24.6
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.4
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.13
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.3
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.14
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.24.1
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.24
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.10
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.11
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.4.36.6
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.1
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.2.27
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.12::x86_64
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.11::x86_64
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.8::x86_64
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.6
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.7::x86_64
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.7
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.6::x86_64
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.5::x86_64
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.4::x86_64
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.3::x86_64
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.2::x86_64
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.10::x86_64
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.1::x86_64
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.18:rc5
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.18:rc6
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.18:rc7
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.18:rc1
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.18:rc2
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.8
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.18:rc3
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.18:rc4
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.1
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.12
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.24.2
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.22
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.21
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.20
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.19
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.24.3
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.24.4
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.24.5
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.2
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.8
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.9
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.14
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.15
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.17
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.18
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.10
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.11
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.12
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.22.13
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.9
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.9::x86_64
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25::x86_64
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.26
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.26.1
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.26.2
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.26.3
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.26.4
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.26.5
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.27
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.28 and previous versions
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.29.3
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.29:rc8-kk
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.29
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.29:git1
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.29.rc2-git1
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.29:rc1
spacerspacerNav control image* cpe:/a:linux:kernel:2.6.24.7
spacerspacerNav control image* cpe:/a:linux:kernel:2.6.25.15
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.23.15
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.23.17
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.23.16
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.23.11
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.23.9
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.23.13
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.25.2
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.23.12
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.21.5
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.20.21
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.23.8
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.20.18
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.20.17
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.30:rc7-git6 and previous versions
spacerspacerNav control image* cpe:/a:intel:e1000:7.4.27
spacerspacerNav control image* cpe:/a:intel:e1000:7.4.35 and previous versions
spacerspacerNav control image* cpe:/a:intel:e1000:7.3.20
spacerspacerNav control image* cpe:/a:intel:e1000:7.3.15
spacerspacerNav control image* cpe:/a:intel:e1000:7.2.9
spacerspacerNav control image* cpe:/a:intel:e1000:7.2.7
spacerspacerNav control image* cpe:/a:intel:e1000:7.1.9
spacerspacerNav control image* cpe:/a:intel:e1000:7.0.41
spacerspacerNav control image* cpe:/a:intel:e1000:7.0.33
spacerspacerNav control image* cpe:/a:intel:e1000:6.3.9
spacerspacerNav control image* cpe:/a:intel:e1000:6.2.15
spacerspacerNav control image* cpe:/a:intel:e1000:6.1.16
spacerspacerNav control image* cpe:/a:intel:e1000:6.0.60
spacerspacerNav control image* cpe:/a:intel:e1000:6.0.54
spacerspacerNav control image* cpe:/a:intel:e1000:5.7.6
spacerspacerNav control image* cpe:/a:intel:e1000:5.6.10
spacerspacerNav control image* cpe:/a:intel:e1000:5.6.10.1
spacerspacerNav control image* cpe:/a:intel:e1000:5.5.4
spacerspacerNav control image* cpe:/a:intel:e1000:5.4.11
spacerspacerNav control image* cpe:/a:intel:e1000:5.3.19
spacerspacerNav control image* cpe:/a:intel:e1000:5.2.52
spacerspacerNav control image* cpe:/a:intel:e1000:5.2.30.1
spacerspacerNav control image* cpe:/a:intel:e1000:5.2.22
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.30:rc3
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.30:rc2
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.30:rc1
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.29:rc2_git7
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.29.rc1
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.29:rc2
spacerspacerNav control image* cpe:/o:linux:linux_kernel:2.6.29.rc2
* Denotes Vulnerable Software
* Changes related to vulnerability configurations

Technical Details

Vulnerability Type (View All)
CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1385