CAN-2005-0384 is fixed in kernel-source-2.6.8 2.6.8-15
and will be fixed in kernel-source-2.4.27 2.6.8-9
--
Horms
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
hi again,
sorry for the delay, but the bug triggers only when the remote peer
disconnects me - and it does it only once a day.
Marco d'Itri wrote:
reassign 299875 kernel
retitle 299875 CAN-2005-0384: Remote Linux DoS on ppp servers
tag 299875 patch security
yes, it really looks like a pppd
Okay. Do I correctly understand that kernel patch + downgrade solves
your problem?
And, if you have *just* the kernel patch, /usr/sbin/pppd hangs, but
doesn't crash the system?
Thanks,
Justin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL
On Mar 20, Christian Kujau [EMAIL PROTECTED] wrote:
- pppd tries to re-establish the connection, says Starting link in the
logfile [1] and then just hangs.
Weird. Maybe you hit something like #298657 and the other similar bugs.
--
ciao,
Marco
signature.asc
Description: Digital signature
reassign 299875 kernel
retitle 299875 CAN-2005-0384: Remote Linux DoS on ppp servers
tag 299875 patch security
thanks
Paul Mackerras says that this bug affects all kernels (2.4 and 2.6) and
can be easily triggered remotely, but is only a CPU DoS.
from 2.6.11.4:
diff -Nru
Processing commands for [EMAIL PROTECTED]:
reassign 299875 kernel
Bug#299875: ppp: out-of-memory 30min after LCP terminated by peer
Bug reassigned from package `ppp' to `kernel'.
retitle 299875 CAN-2005-0384: Remote Linux DoS on ppp servers
Bug#299875: ppp: out-of-memory 30min after LCP
Justin Pryzby wrote:
I assume that you have seen this:
http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.11.4
yes i have*now*. obviously this was a security issue (CAN-2005-0384)
and i *guess* that's why the issue was not discussed in public. what pity
and what a waste of time in
7 matches
Mail list logo