Red Hat Bugzilla – Bug 174808
CVE-2002-2185 IGMP DoS
Last modified: 2014-06-18 04:28:43 EDT
+++ This bug was initially created as a clone of Bug #174807 +++
With IGMP version 1 and 2 it is possible to inject a unicast report to a client
which will make it ignore multicast reports sent later by the router.
The fix is to only accept the report if is was sent to a multicast or unicast
address. Fix from David Stevens at IBM and will be made upstream shortly.
-- Additional comment from firstname.lastname@example.org on 2005-12-02 08:53 EST --
Created an attachment (id=121751)
proposed upstream patch
*** Bug 174809 has been marked as a duplicate of this bug. ***
A fix for this problem has just been committed to the RHEL3 E7
patch pool this evening (in kernel version 2.4.21-37.0.1.EL).
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.
A fix for this problem has also been committed to the RHEL3 U7
patch pool this evening (in kernel version 2.4.21-39.EL).