Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
kernel bug allows ICMP dos vulnerablilty
#1

check here

 

[/url][url=http://www.securityfocus.com/bid/16532/]http://www.securityfocus.com/bid/16532/

 

Quote:inux Kernel ICMP_Send Remote Denial Of Service Vulnerability 

Linux kernel is prone to a remote denial-of-service vulnerability.

 

Remote attackers can exploit this vulnerability to crash affected kernels, effectively denying service to legitimate users.

 

Linux kernel versions 2.6.15.2 and prior in the 2.6 series are vulnerable to this issue.
 

The easy fix is to block ICMP until you upgrade your kernels...

 

thanks to P38 for the heads up

 

cheers

anyweb

Reply
#2
ping ping ping ping ping ..
Reply
#3

uname -a:

 



Code:
Linux blackholelinux 2.6.13-15.8-smp #1 SMP Tue Feb 7 11:07:24 UTC 2006 i686 i686 i386 GNU/Linux




 

Presumbaly this means I'm OK?

Reply
#4

Quote:Presumbaly this means I'm OK?
 

No.. compare each number at a time:

2.6.13 < 2.6.15

 

You should note that all the stuff after, "-15.8-smp" is a local appended version by your OS.

 

For instance I have:

2.6.14-gentoo-r5znx

 

You can see that I also have an old kernel, 2.6.14 < 2.6.15. The "-gentoo-r5znx" is an appended local version.

Reply
#5

Oh, I see. I was getting confused by the '15' just after the '13' in 2.6.13-15.8-smp.

 

OK thanks znx.

Reply


Forum Jump:


Users browsing this thread: 2 Guest(s)