Herbert Xu discovered that a number of netlink applications do not check the source address of incoming packets, assuming they are coming from the kernel. As any local user can send unicast netlink messages to any process on the system, this can lead to a local denial of service attack, or other local attacks. glibc in RHEL3 is affected (getifaddrs) Currently embargoed.
was fixed by RHSA-2003:334
I'm closing this since it's been fixed.