Threat Level: green Handler on Duty: Rob VandenBrink

SANS ISC: Linux kernel 2.6 ICMP bug resulting in remote DoS - SANS Internet Storm Center SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Linux kernel 2.6 ICMP bug resulting in remote DoS
Here we have a perfect example of how hard it is sometimes to stay abreast of security risks.  Thanks to Ronald for the heads up, it looks like there are a few additional mailing lists I need to consider subscribing.

Over a week ago, the 2.6.15.3 Linux kernel included a patch to address a bug in the icmp_send function that would crash the kernel resulting in a DoS.  The current latest stable Linux kernel is 2.6.15.4 available from http://www.kernel.org/.  Details are available at http://www.securityfocus.com/bid/16532/.

For mitigation, I choose to quote HD Moore since he has put it most simply 'The easy fix is to block ICMP until you upgrade your kernels...'.  'nuff said.



William

39 Posts

Sign Up for Free or Log In to start participating in the conversation!