Bug#540074: netfilter leaking traffic when long chains defined
Package: linux-image-2.6-486
Version: 2.6.26+17+lenny1
Severity: normal
File: linux
There appears to be traffic leaking across the netfilter when a long chain of
valid ip addresses are used.
I am getting connections being established from outside of the valid address
list. For example:
netstat -a --numeric-users
tcp 0 0 10.0.0.8:9999 118.168.141.172:3388 ESTABLISHED
This problem incorrectly reported on #534963 against iptables. This
reopens against kernel, as advised by Laurence Lane.
For details of configuration scripts and test data, refer to bug #534963.
Mark.
-- System Information:
Debian Release: 5.0.2
APT prefers stable
APT policy: (990, 'stable'), (50, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.26-2-486
Locale: LANG=en_GB, LC_CTYPE=en_GB (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/dash
Versions of packages linux-image-2.6-486 depends on:
ii linux-image-2.6.26-2-486 2.6.26-17 Linux 2.6.26 image on x86
linux-image-2.6-486 recommends no packages.
linux-image-2.6-486 suggests no packages.
-- no debconf information
Reply to: