Re: Local Netfilter / IPTables IP Queue PID Wrap Flaw

From: James Morris (jmorrisat_private)
Date: Tue Dec 03 2002 - 05:32:24 PST

Next message: Mandrake Linux Security Team: "MDKSA-2002:084 - Updated pine packages fix buffer overflow vulnerability"

Previous message: Martin Schulze: "[SECURITY] [DSA 202-1] New IM packages fix insecure temporary file creation"
In reply to: James Morris: "Local Netfilter / IPTables IP Queue PID Wrap Flaw"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Just an update on this.

> Solution:
> 
>   Upgrade to Linux kernels 2.4.20 (stable), and 2.5.32 (development).
> 

Someone has pointed out that the recommended 2.4.20 kernel has an ext3
data corruption bug (which fortunately will not affect most users).

The changset comments for the ext3 bug are at:
<http://linux.bkbits.net:8080/linux-2.4/csetat_private?nav=index.html|ChangeSet@-1d>

Please be careful if updating to 2.4.20, or wait until 2.4.21.


- - James
- -- 
James Morris
<jmorrisat_private>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE97LJrKVbBrEQtqycRAqjKAJ0cNXnTMAW2rd32rGT9EOJ/h9j5xQCZARR0
Qi9kPi2nGCYaQD2gYZ96+oY=
=kAAm
-----END PGP SIGNATURE-----

Next message: Mandrake Linux Security Team: "MDKSA-2002:084 - Updated pine packages fix buffer overflow vulnerability"
Previous message: Martin Schulze: "[SECURITY] [DSA 202-1] New IM packages fix insecure temporary file creation"
In reply to: James Morris: "Local Netfilter / IPTables IP Queue PID Wrap Flaw"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Dec 03 2002 - 11:52:45 PST