Welcome to Overclockers Forums! Join us to reply in threads, receive reduced ads, and to customize your site experience!

nasty bug for iptables and a 2.6 kernel

Thread starter Christoph
Start date Jun 30, 2004

Overclockers is supported by our readers. When you click a link to make a purchase, we may earn a commission. Learn More.

Christoph

JAPH Senior

Jun 30, 2004

Details are here. Basically, if you're using iptables with --tcp-option , a specially formed packet will put the kernel in an infinite loop. The link explains the vulnerability in depth.
Happily, the fix involves changing "char" on line 1461 of net/ipv4/netfilter/ip_tables.c[/b] to "u_int8_t" .

Edit: The current 2.6 kernel 2.6.7, so 2.6.0 through 2.6.7 are vulnerable.

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.

Accept Learn more…

Back