Bug 168803
Summary: | CAN-2005-2457, -2548 Linux Kernel Denial of Service | ||
---|---|---|---|
Product: | [Retired] Fedora Legacy | Reporter: | John Dalbec <jpdalbec> |
Component: | kernel | Assignee: | Fedora Legacy Bugs <bugs> |
Status: | CLOSED DUPLICATE | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | fc2 | CC: | deisenst, jkeating, marc.deslauriers, pekkas |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | i386 | ||
OS: | Linux | ||
URL: | http://www.securityfocus.com/bid/14614 | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2005-11-18 06:05:55 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
John Dalbec
2005-09-20 13:42:34 UTC
05.34.6 CVE: CAN-2005-2548 Platform: Linux Title: Linux Kernel SNMP Handler Denial of Service Description: The Linux kernel is prone to an SNMP handler denial of service vulnerability. Linux kernel versions 2.6.8 rc2 and earlier are known to be vulnerable. Ref: http://lists.debian.org/debian-kernel/2005/08/msg00418.html 05.37.8 CVE: CAN-2005-2802 Platform: Linux Title: Linux Kernel Netfilter ipt_recent Remote Denial of Service Description: The Netfilter project maintains the packet filter component of the Linux kernel. The "ipt_recent" module can be used with Netfilter to verify if a source address has been recently seen. The "ipt_recent" module in the Linux Kernel is reported prone to a local denial of service vulnerability which can be exploited by sending specially crafted packets such as packets used to carry out an SSH brute force attack. Linux Kernel versions 2.6.8 and 2.6.10 are vulnerable. Ref: http://www.securityfocus.com/advisories/9223 Hey John, Pekka, et al., Why don't we combine this bug with bug # 157459, "CAN-2005-1263 Linux kernel ELF core dump privilege elevation", adding the three above advisories to it, call 157459 "Linux Kernel multiple vulnerabilities (CAN-2005-1263, CAN-2005-2457, CAN-2005-2548, CAN-2005-2802)" and close this bug DUPLICATE of 157459? Or combine that bug with this one, closing that one as a duplicate? That way we can track all kernel security issues in on bug ticket #. |