Hide Forgot
Description of problem: Security scans using nmap or retina causes a kernel crash when a nfs mount is mounted. Not a problem with no mounts. Version-Release number of selected component (if applicable): Red Hat Enterprise Linux Workstation release 6.0 (Santiago) Kernel 2.6.32-71.14.1.el6.x86_64 How reproducible: nmap -sV -O -p 1-65535 [ hostname ] or Retina scan. Steps to Reproduce: 1.nmap -sV -O -p 1-65535 [ hostname ] 2. Retina security scanner 3. Actual results: Kernel panic Expected results: List of open ports. Additional info: nfs3 or nfs4 kernel panics
Please post the panic info...
Could you please test this particular issue using the kernel from http://rhn.redhat.com/errata/RHSA-2011-0329.html This fixes an error handling code which resulted in a similar crash. -- * A use-after-free flaw was found in the Linux kernel's RPC server sockets implementation. A remote attacker could use this flaw to trigger a denial of service by sending a corrupted packet to a target system. (CVE-2011-0714, Important) --
Since RHEL 6.1 External Beta has begun, and this bug remains unresolved, it has been rejected as it is not proposed as exception or blocker. Red Hat invites you to ask your support representative to propose this request, if appropriate and relevant, in the next release of Red Hat Enterprise Linux.
No response to the inquiry... Changing the component to kernel and moving out to 6.3
Since RHEL 6.2 External Beta has begun, and this bug remains unresolved, it has been rejected as it is not proposed as exception or blocker. Red Hat invites you to ask your support representative to propose this request, if appropriate and relevant, in the next release of Red Hat Enterprise Linux.
This is probably the same issue described in https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-0714