Red Hat Bugzilla – Bug 174807
CVE-2002-2185 IGMP DoS
Last modified: 2014-06-18 04:28:43 EDT
With IGMP version 1 and 2 it is possible to inject a unicast report to a client
which will make it ignore multicast reports sent later by the router.
The fix is to only accept the report if is was sent to a multicast or unicast
address. Fix from David Stevens at IBM and will be made upstream shortly.
Created attachment 121751 [details]
proposed upstream patch
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.
All in attendance at 12-JAN-06 RHEL meeting approved for MUSTFIX list for RHEL4-U3