• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Linux Kernel IPTables Logging Rules Integer Underflow Vulnerability

Solution:
It is reported that this issue is already fixed in the 2.6.8 upstream Linux kernel.

SuSE has released an advisory (SUSE-SA:2004:037) and fixes to address this vulnerability in SuSE products. Customers are advised to peruse the referenced advisory for further information pertaining to obtaining and applying appropriate fixes.

MandrakeSoft has issued fixes in advisory MDKSA-2005:022. See reference section.

TurboLinux has released Turbolinux Security Announcement 28/Feb/2005 dealing with this and other issues. Please see the referenced advisory for more information.


Linux kernel 2.6

• TurboLinux kernel-2.6.0-20.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/kernel-2.6.0-20.i586.rpm


• TurboLinux kernel-doc-2.6.0-20.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/kernel-doc-2.6.0-20.i586.rpm


• TurboLinux kernel-extramodules-2.6.0-20.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/kernel-extramodules-2.6.0-20.i586.rpm


• TurboLinux kernel-headers-2.6.0-20.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/kernel-headers-2.6.0-20.i586.rpm


• TurboLinux kernel-pcmcia-cs-2.6.0-20.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/kernel-pcmcia-cs-2.6.0-20.i586.rpm


• TurboLinux kernel-smp-2.6.0-20.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/kernel-smp-2.6.0-20.i586.rpm


• TurboLinux kernel-source-2.6.0-20.i586.rpm
  ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/kernel-source-2.6.0-20.i586.rpm

Linux kernel 2.6.3

• Mandrake kernel-2.6.3.25mdk-1-1mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-2.6.3.25mdk-1-1mdk.i586.rpm
  Mandrake Corporate Server 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-2.6.3.25mdk-1-1mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-enterprise-2.6.3.25mdk-1-1mdk.i586.rpm
  Mandrake Corporate Server 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-enterprise-2.6.3.25mdk-1-1mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-i686-up-4GB-2.6.3.25mdk-1-1mdk.i586.rpm
  Mandrake Corporate Server 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-i686-up-4GB-2.6.3.25mdk-1-1mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-p3-smp-64GB-2.6.3.25mdk-1-1mdk.i586.rpm
  Mandrake Corporate Server 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-p3-smp-64GB-2.6.3.25mdk-1-1mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-secure-2.6.3.25mdk-1-1mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-secure-2.6.3.25mdk-1-1mdk.i586.rpm
  Mandrake Corporate Server 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-secure-2.6.3.25mdk-1-1mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-smp-2.6.3.25mdk-1-1mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-smp-2.6.3.25mdk-1-1mdk.i586.rpm
  Mandrake Corporate Server 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-smp-2.6.3.25mdk-1-1mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-source-2.6.3-25mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-source-2.6.3-25mdk.i586.rpm
  Mandrake Corporate Server 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-source-2.6.3-25mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-source-stripped-2.6.3-25mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-source-stripped-2.6.3-25mdk.i586.rpm
  Mandrake Corporate Server 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake kernel-source-stripped-2.6.3-25mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php

Linux kernel 2.6.4

• SuSE kernel-bigsmp-2.6.5-7.111.i586.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-bigsmp-2.6 .5-7.111.i586.rpm


• SuSE kernel-default-2.6.5-7.111.i586.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-default-2. 6.5-7.111.i586.rpm


• SuSE kernel-default-2.6.5-7.111.x86_64.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-defaul t-2.6.5-7.111.x86_64.rpm


• SuSE kernel-smp-2.6.5-7.111.i586.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/kernel-smp-2.6.5- 7.111.i586.rpm


• SuSE kernel-smp-2.6.5-7.111.x86_64.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/kernel-smp-2. 6.5-7.111.x86_64.rpm