Bug#295948: kernel-source-2.6.9: [CAN-2005-0449] skb_checksum_help DoS
Package: kernel-source-2.6.9
Severity: normal
Good day,
>From CAN-2005-0449 :
| The netfilter/iptables module in Linux before 2.6.8.1 allows remote
| attackers to cause a denial of service (kernel crash) or bypass
| firewall rules via crafted packets, which are not properly handled by
| the skb_checksum_help function.
More info is available here :
http://oss.sgi.com/archives/netdev/2005-01/msg01036.html
I believe this CAN is bogus as 2.6.10 seems to be vulnerable.
A patch from Herbet Xu is available here :
http://oss.sgi.com/archives/netdev/2005-01/msg01072.html
Regards.
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: powerpc (ppc)
Kernel: Linux 2.6.9-rfb-swsusp
Locale: LANG=fr_FR@euro, LC_CTYPE=fr_FR@euro (charmap=ISO-8859-15)
Reply to: