New Fedora Core 4 kernel addresses remote ICMP DoS vuln

Product : Fedora Core 4
Name : kernel
Version : 2.6.15
Release : 1.1831_FC4

Update Information:

This update fixes a remotely exploitable denial of service
attack in the icmp networking code (CVE-2006-0454). An
information leak has also been fixed (CVE-2006-0095), and
some debugging patches that had accidentally been left
applied in the previous update have been removed, restoring
the functionality of the 'quiet' argument.

My wild interpretation upon what I read:

It appears that if you send ICMP packets with invalid parameters to the Linux kernel that it doesn't "free up the connections." Eventually, the kernel will run out or resources.

If you care and haven't gotten an email about it.

 

 

 

 

Top