Security vulnerability in netfilter?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hello list,

is there any official information about this
http://www.securityfocus.com/archive/1/379010/2004-10-19/2004-10-25/0

?

Couldn't find anything on netfilter.org

quoting from the article:
"
   An integer underflow problem in the iptables firewall logging rules
   can allow a remote attacker to crash the machine by using a handcrafted
   IP packet. This attack is only possible with firewalling enabled.

   We would like to thank Richard Hart for reporting the problem.

   This problem has already been fixed in the 2.6.8 upstream Linux kernel,
   this update contains a backport of the fix.

   Products running a 2.4 kernel are not affected.

   Mitre has assigned the CVE ID CAN-2004-0816 for this problem.
"
-- 
C U

     - -- ---- ----- -----/\/  René Gallati  \/\---- ----- --- -- -



[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux