Bug#295947: kernel-source-2.6.10: [CAN-2005-0449] skb_checksum_help DoS

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#295947: kernel-source-2.6.10: [CAN-2005-0449] skb_checksum_help DoS
From: Djoume SALVETTI <djoume@taket.org>
Date: Fri, 18 Feb 2005 12:24:28 +0100
Message-id: <[🔎] E1D26FI-0001xW-Tn@localhost>
Reply-to: Djoume SALVETTI <djoume@taket.org>, 295947@bugs.debian.org

Package: kernel-source-2.6.10
Severity: normal


Good day,

>From CAN-2005-0449 :

| The netfilter/iptables module in Linux before 2.6.8.1 allows remote
| attackers to cause a denial of service (kernel crash) or bypass
| firewall rules via crafted packets, which are not properly handled by
| the skb_checksum_help function.

More info is available here :
http://oss.sgi.com/archives/netdev/2005-01/msg01036.html

I believe this CAN is bogus as 2.6.10 seems to be vulnerable.

A patch from Herbet Xu is available here :

http://oss.sgi.com/archives/netdev/2005-01/msg01072.html

Regards.


-- System Information:
Debian Release: 3.1
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: powerpc (ppc)
Kernel: Linux 2.6.9-rfb-swsusp
Locale: LANG=fr_FR@euro, LC_CTYPE=fr_FR@euro (charmap=ISO-8859-15)

Reply to:

Prev by Date: Bug#295948: kernel-source-2.6.9: [CAN-2005-0449] skb_checksum_help DoS
Next by Date: Processed: tagging 295947
Previous by thread: Bug#295948: kernel-source-2.6.9: [CAN-2005-0449] skb_checksum_help DoS
Next by thread: Processed: tagging 295947
Index(es):
- Date
- Thread