- Missing upper bounds packet size check
- Red Hat Enterprise Linux 3
The flaw identified by CVE-2009-1265 describes a missing upper bounds packet size check in the nr_sendmsg(), rose_sendmsg(), and x25_sendmsg() functions in the Linux kernel, versions 2.6.30-rc1 and earlier (including 22.214.171.124, 126.96.36.199, and 188.8.131.52). This flaw was addressed via the upstream git commits 83e0bbcb and cc29c70d. On systems without these patches, and running a kernel compiled with the CONFIG_NETROM, CONFIG_ROSE, or CONFIG_X25 options enabled, this flaw could, potentially, lead to information disclosure.
This issue did not affect the versions of the Linux kernel as shipped with Red Hat Enterprise Linux 2.1, 4, 5, or Red Hat Enterprise MRG, as the affected driver is not enabled in these kernels by default. The affected driver is enabled by default in Red Hat Enterprise Linux 3. This issue as been rated as having moderate security impact as it does not lead to a denial of service or privilege escalation. As Red Hat Enterprise Linux 3 is now in Production 3 of its maintenance life cycle, a fix for this issue is not currently planned to be included in future updates.