• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Linux Netfilter NAT Remote Denial of Service Vulnerability

Solution:
This issue can be fixed by upgrading to the 2.4.21 kernel or later. A source code patch for 2.4.21pre7 is also available.

Ingate have released an advisory and upgrades to address this issue. Affected users are advised to upgrade as soon as possible.

Snapgear has released a pre-release (1.8.5) to address this issue.


Snapgear Snapgear OS 1.8.4

• Snapgear Snapgear OS 1.8.5
  http://www.snapgear.com/downloads.html

Linux kernel 2.4.20

• Linux linux-2.4.21.tar.bz2
  http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.21.tar.bz2

Linux kernel 2.4.21 pre7

• Linux linux-2.4.21.tar.bz2
  http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.21.tar.bz2


• Netfilter netfilter-ircftp-nat.patch
  http://downloads.securityfocus.com/vulnerabilities/patches/netfilter-i rcftp-nat.patch

Linux kernel 2.4.21 pre4

• Linux linux-2.4.21.tar.bz2
  http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.21.tar.bz2

Linux kernel 2.4.21 pre1

• Linux linux-2.4.21.tar.bz2
  http://www.kernel.org/pub/linux/kernel/v2.4/linux-2.4.21.tar.bz2

Ingate SIParator 3.2

• Ingate Ingate Firewall 3.2.1 and Ingate SIParator 3.2.1
  http://www.ingate.com/relnote-321.php

Ingate Firewall 3.2

• Ingate Ingate Firewall 3.2.1 and Ingate SIParator 3.2.1
  http://www.ingate.com/relnote-321.php