Jump to content

kernel bug allows ICMP dos vulnerablilty


Recommended Posts

check here

 

http://www.securityfocus.com/bid/16532/

 

inux Kernel ICMP_Send Remote Denial Of Service Vulnerability

 

Linux kernel is prone to a remote denial-of-service vulnerability.

 

Remote attackers can exploit this vulnerability to crash affected kernels, effectively denying service to legitimate users.

 

Linux kernel versions 2.6.15.2 and prior in the 2.6 series are vulnerable to this issue.

 

The easy fix is to block ICMP until you upgrade your kernels...

 

thanks to P38 for the heads up

 

cheers

anyweb

Link to post
Share on other sites

uname -a:

 

Linux blackholelinux 2.6.13-15.8-smp #1 SMP Tue Feb 7 11:07:24 UTC 2006 i686 i686 i386 GNU/Linux

 

Presumbaly this means I'm OK?

Link to post
Share on other sites
Presumbaly this means I'm OK?

 

No.. compare each number at a time:

2.6.13 < 2.6.15

 

You should note that all the stuff after, "-15.8-smp" is a local appended version by your OS.

 

For instance I have:

2.6.14-gentoo-r5znx

 

You can see that I also have an old kernel, 2.6.14 < 2.6.15. The "-gentoo-r5znx" is an appended local version.

Link to post
Share on other sites

Oh, I see. I was getting confused by the '15' just after the '13' in 2.6.13-15.8-smp.

 

OK thanks znx.

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...