[5816] in bugtraq
Re: CERT Advisory CA-97.28 - Teardrop_Land
daemon@ATHENA.MIT.EDU (Alan Cox)
Tue Dec 16 23:38:24 1997
Date: Wed, 17 Dec 1997 01:26:45 +0000
Reply-To: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
From: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
X-To: mycroft@MIT.EDU
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <el2u3c9gi8t.fsf@bikini.linnaean.org> from "Charles M. Hannum" at
Dec 16, 97 03:12:18 pm
> > Red Hat Software
> > ================
> >
> > Topic 1 - Teardrop
> >
> > Linux is not vulnerable.
>
> It's well known that versions of Linux prior to publishing of the
> teardrop attack *were* vulnerable. The above borders on an outright
> lie.
I've already moaned. The correct answer is:
Linux
Prior to 2.0.31 and earlier are vulnerable to teardrop
2.0.32 and above are not.
RedHat 5.0 ships with a 2.0.31+patches that is not vulnerable. RH5.0
update for the 2.0.32 kernel is on ftp.redhat.com
update kernel and/or apply the patch to the existing kernel if you wish
to remain running an older kernel for reasons such as compliance testing.
I _hope_ someone in RH or Cert merely got teardrop and land muddled up.
Alan
