User: Password:
|
|
Subscribe / Log in / New account

kernel: denial of service and iptables bypass

Package(s):kernel CVE #(s):CVE-2012-2663
Created:June 22, 2012 Updated:November 5, 2012
Description:

From the Novell Bugzilla entry:

SYN+FIN attacks can cause a denial of service condition:

https://git.kernel.org/?p=linux/kernel/git/davem/net-next.git;a=commitdiff;h=fdf5af0daf8019cec2396cdef8fb042d80fe71fa

While this issue was initially reported as a denial of service flaw, it also alows attackers to bypass certain iptables rules:

http://www.spinics.net/lists/netfilter-devel/msg21248.html

Alerts:
openSUSE openSUSE-SU-2012:1439-1 kernel 2012-11-05
SUSE SUSE-SU-2012:1391-1 Linux kernel 2012-10-24
openSUSE openSUSE-SU-2012:0812-1 kernel 2012-07-03
openSUSE openSUSE-SU-2012:0799-1 kernel 2012-06-28
openSUSE openSUSE-SU-2012:0781-1 kernel 2012-06-22

(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds