Linux-Noob Forums

Linux-Noob Forums > Linux Noob > Kernel Related > kernel bug allows ICMP dos vulnerablilty
Full Version: kernel bug allows ICMP dos vulnerablilty
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

anyweb

2006-02-15, 09:55 PM

check here

 

[/url][url=http://www.securityfocus.com/bid/16532/]http://www.securityfocus.com/bid/16532/

 

Quote:inux Kernel ICMP_Send Remote Denial Of Service Vulnerability 

Linux kernel is prone to a remote denial-of-service vulnerability.

 

Remote attackers can exploit this vulnerability to crash affected kernels, effectively denying service to legitimate users.

 

Linux kernel versions 2.6.15.2 and prior in the 2.6 series are vulnerable to this issue.
 

The easy fix is to block ICMP until you upgrade your kernels...

 

thanks to P38 for the heads up

 

cheers

anyweb

znx

2006-02-15, 11:21 PM
ping ping ping ping ping ..

hybrid

2006-02-16, 08:17 AM

uname -a:

 



Code:
Linux blackholelinux 2.6.13-15.8-smp #1 SMP Tue Feb 7 11:07:24 UTC 2006 i686 i686 i386 GNU/Linux




 

Presumbaly this means I'm OK?

znx

2006-02-16, 01:44 PM

Quote:Presumbaly this means I'm OK?
 

No.. compare each number at a time:

2.6.13 < 2.6.15

 

You should note that all the stuff after, "-15.8-smp" is a local appended version by your OS.

 

For instance I have:

2.6.14-gentoo-r5znx

 

You can see that I also have an old kernel, 2.6.14 < 2.6.15. The "-gentoo-r5znx" is an appended local version.

hybrid

2006-02-16, 01:47 PM

Oh, I see. I was getting confused by the '15' just after the '13' in 2.6.13-15.8-smp.

 

OK thanks znx.

Linux-Noob Forums > Linux Noob > Kernel Related > kernel bug allows ICMP dos vulnerablilty