Created attachment 346959 [details] backtraces Description of problem: Michael Tokarev reported receiving a large packet could crash a machine with RTL8169 NIC. Problem is this driver tells that NIC frames up to 16383 bytes can be received but provides skb to rx ring allocated with smaller sizes (1536 bytes in case standard 1500 bytes MTU is used) When a frame larger than what was allocated by driver is received, dma transfert can occurs past the end of buffer and corrupt kernel memory. Fix is to tell to NIC what is the maximum size a frame can be. References: http://marc.info/?t=123462473200002 http://lkml.org/lkml/2009/6/8/194 http://www.corpit.ru/mjt/r8169-mtu-oops.jpg http://article.gmane.org/gmane.linux.network/130114 http://www.mail-archive.com/debian-kernel@lists.debian.org/msg45651.html
Proposed patch: http://thread.gmane.org/gmane.linux.network/130114
(In reply to comment #3) > Proposed patch: > http://thread.gmane.org/gmane.linux.network/130114 Upstream commit: http://git.kernel.org/linus/fdd7b4c3302c93f6833e338903ea77245eb510b4 (v2.6.30)
kernel-2.6.27.25-78.2.56.fc9 has been submitted as an update for Fedora 9. http://admin.fedoraproject.org/updates/kernel-2.6.27.25-78.2.56.fc9
kernel-2.6.27.25-170.2.72.fc10 has been submitted as an update for Fedora 10. http://admin.fedoraproject.org/updates/kernel-2.6.27.25-170.2.72.fc10
kernel-2.6.27.25-170.2.72.fc10 has been pushed to the Fedora 10 stable repository. If problems still persist, please make note of it in this bug report.
kernel-2.6.29.5-191.fc11 has been pushed to the Fedora 11 stable repository. If problems still persist, please make note of it in this bug report.
kernel-2.6.27.25-78.2.56.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.
(In reply to comment #8) > kernel-2.6.29.5-191.fc11 has been pushed to the Fedora 11 stable repository. > If problems still persist, please make note of it in this bug report. Yes; reported at: https://bugzilla.redhat.com/show_bug.cgi?id=460747#c99
(In reply to comment #10) > (In reply to comment #8) > > > kernel-2.6.29.5-191.fc11 has been pushed to the Fedora 11 stable repository. > > If problems still persist, please make note of it in this bug report. > > Yes; reported at: > > https://bugzilla.redhat.com/show_bug.cgi?id=460747#c99 Manfred, it looks like a different problem as reported in bug 460747. Thanks.
(In reply to comment #11) > (In reply to comment #10) > > (In reply to comment #8) > .. looks like a different problem as reported in bug 460747 ... Sure; just meant as a cross-reference. From the diversity of bug reports in all the smitten kernel and distro's reporting systems, I've got the impression that R. have ejected quite a diversity of HW/FW (en detail) under the same-looking label ;)
This issue has been addressed in following products: MRG for RHEL-5 Via RHSA-2009:1157 https://rhn.redhat.com/errata/RHSA-2009-1157.html
Upstream commits for 2.4.x: http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=8d5555548d0b2c57d798efd340b92706912fe138 http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=26e064952f04874c98f80176417ffd3bc4967aec http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=d1fa4c2ee5f1d17d4d819ffe0b489bc309089b0b http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=7bfbdfa937b3b07e0980fd4bcd070bc8ff1cf215 http://git.kernel.org/?p=linux/kernel/git/stable/linux-2.4.37.y.git;a=commit;h=f59f05521f88820e7198170bb3e95bb1cfaa1dca
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2009:1193 https://rhn.redhat.com/errata/RHSA-2009-1193.html
This issue has been addressed in following products: Red Hat Enterprise Linux 4 Via RHSA-2009:1211 https://rhn.redhat.com/errata/RHSA-2009-1211.html
This issue has been addressed in following products: Red Hat Enterprise Linux 5.2 Z Stream Via RHSA-2009:1457 https://rhn.redhat.com/errata/RHSA-2009-1457.html
This issue has been addressed in following products: Red Hat Enterprise Linux 4.7 Z Stream Via RHSA-2009:1469 https://rhn.redhat.com/errata/RHSA-2009-1469.html