Bug 108574
| Summary: | CAN-2003-0857 Netlink local DoS: iptables | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 2.1 | Reporter: | Mark J. Cox <mjc> |
| Component: | iptables | Assignee: | Thomas Woerner <twoerner> |
| Status: | CLOSED NOTABUG | QA Contact: | Ben Levenson <benl> |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | 2.1 | Keywords: | Security |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2003-11-24 16:32:53 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
We don't ship iptables-devel and nothing shipped with iptables uses the vulnerable routines. Therefore no errata required. |
Herbert Xu discovered that a number of netlink applications do not check the source address of incoming packets, assuming they are coming from the kernel. As any local user can send unicast netlink messages to any process on the system, this can lead to a local denial of service attack, or other local attacks. iptables in RHEL3 and RHEL2.1 is affected ipq_read - used for userspace to deal with packets from netfilter ipulog_read - used for userspace logging of packets Currently embargoed.