+- Linux-Noob Forums (https://www.linux-noob.com/forums)
+-- Forum: Linux Noob (https://www.linux-noob.com/forums/forum-3.html)
+--- Forum: Kernel Related (https://www.linux-noob.com/forums/forum-61.html)
+--- Thread: kernel bug allows ICMP dos vulnerablilty (/thread-2154.html)
kernel bug allows ICMP dos vulnerablilty - anyweb - 2006-02-15
check here
[/url][url=http://www.securityfocus.com/bid/16532/]http://www.securityfocus.com/bid/16532/
Quote:inux Kernel ICMP_Send Remote Denial Of Service Vulnerability
Linux kernel is prone to a remote denial-of-service vulnerability.
Remote attackers can exploit this vulnerability to crash affected kernels, effectively denying service to legitimate users.
Linux kernel versions 2.6.15.2 and prior in the 2.6 series are vulnerable to this issue.
The easy fix is to block ICMP until you upgrade your kernels...
thanks to P38 for the heads up
cheers
anyweb
kernel bug allows ICMP dos vulnerablilty - znx - 2006-02-15
ping ping ping ping ping ..
kernel bug allows ICMP dos vulnerablilty - hybrid - 2006-02-16
uname -a:
Code:
Linux blackholelinux 2.6.13-15.8-smp #1 SMP Tue Feb 7 11:07:24 UTC 2006 i686 i686 i386 GNU/LinuxPresumbaly this means I'm OK?
kernel bug allows ICMP dos vulnerablilty - znx - 2006-02-16
Quote:Presumbaly this means I'm OK?
No.. compare each number at a time:
2.6.13 < 2.6.15
You should note that all the stuff after, "-15.8-smp" is a local appended version by your OS.
For instance I have:
2.6.14-gentoo-r5znx
You can see that I also have an old kernel, 2.6.14 < 2.6.15. The "-gentoo-r5znx" is an appended local version.
kernel bug allows ICMP dos vulnerablilty - hybrid - 2006-02-16
Oh, I see. I was getting confused by the '15' just after the '13' in 2.6.13-15.8-smp.
OK thanks znx.