[kernel] r4942 - patch-tracking
Dann Frazier
dannf at costa.debian.org
Thu Dec 1 07:51:54 UTC 2005
Author: dannf
Date: Thu Dec 1 07:51:52 2005
New Revision: 4942
Modified:
patch-tracking/CVE-2003-0364
Log:
updates
Modified: patch-tracking/CVE-2003-0364
==============================================================================
--- patch-tracking/CVE-2003-0364 (original)
+++ patch-tracking/CVE-2003-0364 Thu Dec 1 07:51:52 2005
@@ -1,6 +1,35 @@
Candidate: CVE-2003-0364
References:
+ REDHAT:RHSA-2003:187
+ URL:http://www.redhat.com/support/errata/RHSA-2003-187.html
+ REDHAT:RHSA-2003:195
+ URL:http://www.redhat.com/support/errata/RHSA-2003-195.html
+ REDHAT:RHSA-2003:198
+ URL:http://www.redhat.com/support/errata/RHSA-2003-198.html
+ DEBIAN:DSA-311
+ URL:http://www.debian.org/security/2003/dsa-311
+ DEBIAN:DSA-312
+ URL:http://www.debian.org/security/2003/dsa-312
+ DEBIAN:DSA-332
+ URL:http://www.debian.org/security/2003/dsa-332
+ DEBIAN:DSA-336
+ URL:http://www.debian.org/security/2003/dsa-336
+ DEBIAN:DSA-442
+ URL:http://www.debian.org/security/2004/dsa-442
+ TURBO:TLSA-2003-41
+ URL:http://www.turbolinux.com/security/TLSA-2003-41.txt
+ OVAL:OVAL295
+ URL:http://oval.mitre.org/oval/definitions/data/oval295.html
Description:
+ The TCP/IP fragment reassembly handling in the Linux kernel 2.4 allows remote
+ attackers to cause a denial of service (CPU consumption) via certain packets that
+ cause a large number of hash table collisions.
+ .
+ dannf> Looked at backporting to 2.4.19. Needs:
+ dannf> http://linux.bkbits.net:8080/linux-2.4/cset@3eb386b2dS-8SRa2JJ56ZkSILlS36w?nav=index.html|src/|src/include|src/include/linux|related/include/linux/jhash.h
+ dannf> and
+ dannf> http://linux.bkbits.net:8080/linux-2.4/cset@3ed4493chErJDQEJzZiV8csaf1XppA?nav=index.html|src/|src/net|src/net/ipv4|related/net/ipv4/ip_fragment.c
+ dannf> and probably something in between
Notes:
Bugs:
upstream:
@@ -8,8 +37,9 @@
2.6.8-sarge-security:
2.4.27-sarge-security:
2.6.8:
+2.2.20-woody-security: released (2.2.20-5woody2)
2.4.19-woody-security:
-2.4.18-woody-security:
+2.4.18-woody-security: released (2.4.18-9)
2.4.17-woody-security: released (2.4.17-1woody1)
2.4.16-woody-security:
2.4.17-woody-security-hppa:
More information about the Kernel-svn-changes
mailing list