Two kernel security questions

To: Debian Security List <debian-security@lists.debian.org>
Subject: Two kernel security questions
From: Bill Bell <whbell@bell-cs.com>
Date: Wed, 7 Aug 2002 17:20:08 -0500
Message-id: <[🔎] 1028758808.3d519d18a96e2@www.bell-cs.com>

Hello List,

I have been asked to respond to the following two potential security 
problems for my Debian (woody) servers and I am looking for solid 
reference material.  I am running a custom 2.4.18 kernel.


For this seqport problem I have not been able to find any data as to my 
systems vunerability.  I am sure that I do not have a problem, but I 
need to answer with published details.
----------------------
Name: CVE-1999-0074
Reference: XF:seqport

Listening TCP ports are sequentially allocated, allowing spoofing
attacks.
----------------------


For the tcp-seq-predict problem I have found-
http://online.securityfocus.com/bid/670/
and
http://online.securityfocus.com/bid/670/discussion/
which seem to indicate that the problem was fixed in or about the 
2.2.13 kernel time period.  Is this really the case?
----------------------
Name: CVE-1999-0077
Reference: XF:tcp-seq-predict

Predictable TCP sequence numbers allow spoofing.
----------------------

Thanks for any help,

-- 
Bill

Reply to:

Prev by Date: Re: Problems using the grsecurity kernel source patch package in woody.
Next by Date: Re: PGP
Previous by thread: Re: Problems using the grsecurity kernel source patch package in woody.
Next by thread: encrypting/decrypting partitions on the fly?
Index(es):
- Date
- Thread