Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-28 Thread Bruce Banner
Thanks for the info. I don't like depending on Red Hat for security fixes. I want to rely on Debian for this kind of stuff I just didn't know where to find it. Thanks --- Ulrich Scholler <[EMAIL PROTECTED]> wrote: > Hi Bruce, > > On Mon Jul 28, 2003 at 11:38:51 -0

Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-28 Thread Bruce Banner
download the source from RedHat? The source from > debian is also > patched with needed patches. > > apt-get install kernel-source > > On Mon, 2003-07-28 at 19:05, Bruce Banner wrote: > > You can download Red Hats > > kernel-source-2.4.20-19.9.i386.rpm run alien &

Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-28 Thread Bruce Banner
Thanks for the info. I don't like depending on Red Hat for security fixes. I want to rely on Debian for this kind of stuff I just didn't know where to find it. Thanks --- Ulrich Scholler <[EMAIL PROTECTED]> wrote: > Hi Bruce, > > On Mon Jul 28, 2003 at 11:38:51 -0

Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-28 Thread Bruce Banner
Hofmeister <[EMAIL PROTECTED]> wrote: > If I do use bridging...is there a patch? > > What is the consequences of an unpatched system? (In > more detail than > below) > > On Mon, 28 Jul 2003 at 07:39:53PM +1000, Herbert Xu > wrote: > > Florian Weimer <[EMAIL PROTEC

Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-28 Thread Bruce Banner
download the source from RedHat? The source from > debian is also > patched with needed patches. > > apt-get install kernel-source > > On Mon, 2003-07-28 at 19:05, Bruce Banner wrote: > > You can download Red Hats > > kernel-source-2.4.20-19.9.i386.rpm run alien &

Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-28 Thread Bruce Banner
Hofmeister <[EMAIL PROTECTED]> wrote: > If I do use bridging...is there a patch? > > What is the consequences of an unpatched system? (In > more detail than > below) > > On Mon, 28 Jul 2003 at 07:39:53PM +1000, Herbert Xu > wrote: > > Florian Weimer <[EMAIL PROTEC

Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-28 Thread Bruce Banner
; > On Mon, 28 Jul 2003 at 07:39:53PM +1000, Herbert Xu > wrote: > > Florian Weimer <[EMAIL PROTECTED]> wrote: > > > Bruce Banner <[EMAIL PROTECTED]> writes: > > > > > >> CAN-2003-0552: Jerry Kreuscher discovered that > the Forwa

Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-28 Thread Bruce Banner
; > On Mon, 28 Jul 2003 at 07:39:53PM +1000, Herbert Xu > wrote: > > Florian Weimer <[EMAIL PROTECTED]> wrote: > > > Bruce Banner <[EMAIL PROTECTED]> writes: > > > > > >> CAN-2003-0552: Jerry Kreuscher discovered that > the Forwa

Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-28 Thread Bruce Banner
Thanks, --- Herbert Xu <[EMAIL PROTECTED]> wrote: > Florian Weimer <[EMAIL PROTECTED]> wrote: > > Bruce Banner <[EMAIL PROTECTED]> writes: > > > >> CAN-2003-0552: Jerry Kreuscher discovered that > the Forwarding table > >> could be

Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-28 Thread Bruce Banner
Thanks, --- Herbert Xu <[EMAIL PROTECTED]> wrote: > Florian Weimer <[EMAIL PROTECTED]> wrote: > > Bruce Banner <[EMAIL PROTECTED]> writes: > > > >> CAN-2003-0552: Jerry Kreuscher discovered that > the Forwarding table > >> could be

Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-27 Thread Bruce Banner
CAN-2003-0552: Jerry Kreuscher discovered that the Forwarding table could be spoofed by sending forged packets with bogus source addresses the same as the local host. --- Florian Weimer <[EMAIL PROTECTED]> wrote: > Bruce Banner <[EMAIL PROTECTED]> writes: > > &

Kernel 2.4.21 Forwarding table vulnerability

2003-07-27 Thread Bruce Banner
What impact does the Forwarding Table Vulnerability of late have? Is this only a problem if you have ip forwarding enabled and setup as a router or is this part of the normal ip stack functions that affects the kernel no matter what services you are running on your server? I can't find any info o

Re: Kernel 2.4.21 Forwarding table vulnerability

2003-07-27 Thread Bruce Banner
CAN-2003-0552: Jerry Kreuscher discovered that the Forwarding table could be spoofed by sending forged packets with bogus source addresses the same as the local host. --- Florian Weimer <[EMAIL PROTECTED]> wrote: > Bruce Banner <[EMAIL PROTECTED]> writes: > > &

Kernel 2.4.21 Forwarding table vulnerability

2003-07-27 Thread Bruce Banner
What impact does the Forwarding Table Vulnerability of late have? Is this only a problem if you have ip forwarding enabled and setup as a router or is this part of the normal ip stack functions that affects the kernel no matter what services you are running on your server? I can't find any info o

recent kernel advisories

2003-07-21 Thread Bruce Banner
Does anyone know if the latest kernel advisories have been fixed in 2.4.21 or are they fixed in 2.4.22-pre?? The latest vulnerabilities reported by red hat are: CAN-2003-0461: /proc/tty/driver/serial reveals the exact character counts for serial links. This could be used by a local attacker to i

recent kernel advisories

2003-07-21 Thread Bruce Banner
Does anyone know if the latest kernel advisories have been fixed in 2.4.21 or are they fixed in 2.4.22-pre?? The latest vulnerabilities reported by red hat are: CAN-2003-0461: /proc/tty/driver/serial reveals the exact character counts for serial links. This could be used by a local attacker to i