Tetsuo Handa reported a infinite loop allowing a local user to crash a ipv6 enabled kernel. http://linux.bkbits.net:8080/linux-2.6/cset@4342df67SNhRx_3FGhUrrU-FXLlQIA When looking at this update I noticed another patch that we might be missing, not checked into it's ability to have a security relevance: http://linux.bkbits.net:8080/linux-2.6/cset@4341a0f6Dq8vTKy1SDtDVxuJUrQaRg
This issue is on Red Hat Engineering's list of planned work items for the upcoming Red Hat Enterprise Linux 4.4 release. Engineering resources have been assigned and barring unforeseen circumstances, Red Hat intends to include this item in the 4.4 release.
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2006-0493.html