There is a lot of talk around here about what
is list-related and what isn't (and obviously
this is not a security oriented list), but since
I brought up the original issue a few days ago,
I thought I'd response. So...
Do yourself a favour and do not apply this patch,
the problem is exploitable through UDP as well,
fixing ping is useless (it does not address the
real problem).
Use this instead:
ftp://ftp.il.kernel.org/pub/linux/kernel/people/andrea/patches/v2.0/2.0.38/
Moran wrote:
>
> well, you all seems to be very worry about that so here is working patch.
>
> -----Original Message-----
> From: Jason Mills <[EMAIL PROTECTED]>
> To: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
> Date: יום שלישי 14 דצמבר 1999 20:53
> Subject: Re: Big problem on 2.0.x?
>
> >heres a simple patch for the -s stuff just using the same method as with
> >-l :)
> >
> >--- netkit-base-0.10/ping/ping.c.orig Mon Dec 13 15:33:56 1999
> >+++ netkit-base-0.10/ping/ping.c Mon Dec 13 15:34:15 1999
> >@@ -302,6 +302,11 @@
> > options |= F_SO_DONTROUTE;
> > break;
> > case 's': /* size of packet to send */
> >+ if (!am_i_root) {
> >+ (void)fprintf(stderr,
> >+ "ping: %s\n", strerror(EPERM));
> >+ exit(2);
> >+ }
> > datalen = atoi(optarg);
> > if (datalen > MAXPACKET) {
> > (void)fprintf(stderr,
>
> Moran Zavdi
> Warp Security Response Team.
> [EMAIL PROTECTED]
>
> =================================================================
> To unsubscribe, send mail to [EMAIL PROTECTED] with
> the word "unsubscribe" in the message body, e.g., run the command
> echo unsubscribe | mail [EMAIL PROTECTED]
--
/--------------- Omer Efraim, [EMAIL PROTECTED] ------------------\
[ Microsoft Vaccine 2000 is configuring your immune system. This may ]
[ take a few minutes. If your body stops responding for a long time and ]
[ there is no brain activity please die. Setup will continue after you ]
[ are reborn. ]
\-----------------------------------------------------------------------/
- Quoting Buzh, asr
S/MIME Cryptographic Signature
