* [Fwd: [SA11980] Linux Kernel Netfilter TCP Option Matching Denial of Service Vulnerability]
@ 2004-07-01 16:54 Juan Hernandez
0 siblings, 0 replies; only message in thread
From: Juan Hernandez @ 2004-07-01 16:54 UTC (permalink / raw)
To: netfilter
[-- Attachment #1: Type: text/plain, Size: 111 bytes --]
I thought you guys would be interested in this since I haven't read
anything today in this mailing list
Juan
[-- Attachment #2: [SA11980] Linux Kernel Netfilter TCP Option Matching Denial of Service Vulnerability --]
[-- Type: message/rfc822, Size: 2776 bytes --]
From: Secunia Security Advisories <sec-adv@secunia.com>
To: hvjuan@kanux.com
Subject: [SA11980] Linux Kernel Netfilter TCP Option Matching Denial of Service Vulnerability
Date: Thu, 1 Jul 2004 15:17:27 +0200
Message-ID: <200407011317.i61DHRf1020304@secunia.com>
TITLE:
Linux Kernel Netfilter TCP Option Matching Denial of Service
Vulnerability
SECUNIA ADVISORY ID:
SA11980
VERIFY ADVISORY:
http://secunia.com/advisories/11980/
CRITICAL:
Moderately critical
IMPACT:
DoS
WHERE:
From remote
OPERATING SYSTEM:
Linux Kernel 2.6.x
http://secunia.com/product/2719/
DESCRIPTION:
Adam Osuchowski and Tomasz Dubinski have reported a vulnerability in
the Linux kernel, which can be exploited by malicious people to cause
a DoS (Denial of Service).
The vulnerability is caused due to the use of an incorrect variable
type within the "tcp_find_option()" function of the netfilter
subsystem. This can be exploited by sending a specially crafted TCP
packet, which causes the kernel to enter an infinite loop and consume
all available CPU resources.
Successful exploitation requires that iptables is used with rules
matching TCP options ("--tcp-option").
SOLUTION:
Don't use any rules matching TCP options.
PROVIDED AND/OR DISCOVERED BY:
Adam Osuchowski and Tomasz Dubinski
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=hvjuan@kanux.com
----------------------------------------------------------------------
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2004-07-01 16:54 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-07-01 16:54 [Fwd: [SA11980] Linux Kernel Netfilter TCP Option Matching Denial of Service Vulnerability] Juan Hernandez
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox