2.6 kernel iptables exploit

Rob Weir rweir at ertius.org
Mon Oct 25 22:46:48 UTC 2004


On Mon, Oct 25, 2004 at 08:12:25AM -0700, Darren Critchley said
> Taken from another list:
> 
> ------- Included Stuff Follows -------
> Linux kernel flaw found
> Can lead to denial of service
> By Nick Farrell: Monday 25 October 2004, 07:05
> 
>  USERS OF Linux running a 2.6 series kernel and using
>  iptables for firewalling have been advised to upgrade to
>  fix a bug which could be exploited remotely to cause a
>  denial of service.
> 
>  The bug, discovered by Richard Hart, does not affect the
>  2.4 series kernel or the later version. It is caused by
>  an integer underflow problem in the iptables firewall
>  logging rules. This means that a hacker could remotely
>  crash the machine by using a specially designed IP
>  packet.
> 
>  Ironically, they can only do this if a firewall is
>  enabled in the kernel.
> 
>  A spokesSuSE said a workaround was to disable firewall
>  logging of IP and TCP options. It is better practice to
>  upgrade your kernel to the latest version.
> 
> --------- Included Stuff Ends ---------

Already fixed!

-rob

-- 
Words of the day:     PGP TWA North Korea Arnett import chameleon man Crypto AG




More information about the ubuntu-users mailing list