Bug#305655: CAN-2004-0790: TCP connection DoS through ICMP_QUENCH messages
tag 305655 +pending
On Thu, Apr 21, 2005 at 10:18:59AM +0200, Moritz Muehlenhoff wrote:
> Package: kernel-source-2.4.27
> Version: 2.4.27-9 (not installed)
> Severity: important
> Tags: security patch
> http://www.gont.com.ar/drafts/draft-gont-tcpm-icmp-attacks-03.txt describes
> several attacks on TCP through ICMP. One of the described problems affects
> kernel 2.4 as well. Patch is attached (it's the upstream patch from Dave
> S. Miller), it applies to 2.6 and 2.4.
Thanks, I have applied this to the 2.4.27 and 2.6.8 trees.