[1274] in linux-security and linux-alert archive
Re: [linux-security] Re: kernel bug -> security problem
daemon@ATHENA.MIT.EDU (Rob Hagopian)
Sun Oct 27 04:10:31 1996
In-Reply-To: <199610260218.WAA23632@shell1.eznet.net>
Date: Sat, 26 Oct 1996 15:54:58 -0400
To: linux-security@tarsier.cv.nrao.edu
From: Rob Hagopian <hagopiar@vuser.vu.union.edu>
> I have seen it crash a box running lower versions, but I have seen
>it not crash boxes which use ifconfig to set a max packet size. We
>informed a client of ours about the bug, and attempted to demonstrate it
>on his Linux box with no luck, and latter found it was his unique ifconfig
>which prevented it from affecting the system.
On the linux kernel list, it has been mentioned that only 2.0.x might be
vulnerable. In particular, 1.2.13 may not be vulnerable. Other factors may
involve IP_FORWARDING. (Note I say _may_) The best thing to do IMO is just
apply the patch.
-Rob