Hi, On Fri, Jun 04, mgx@spruce.lsd.ornl.gov wrote:
good day all ...
there is a security issue with suse 2.2.x kernels, please see this url:
<A HREF="http://linuxtoday.com/stories/6488.html"><A HREF="http://linuxtoday.com/stories/6488.html</A">http://linuxtoday.com/stories/6488.html</A</A>>
i assume this is only the suse built kernels, and kernels compiled from source are free of this bug?
No, see the beginning of the announcement: Affected: All Linux systems using kernel 2.2.x The solution is just a one-liner. I'm appending it, so there's no need to download the whole thing. -------------------------------------------------------------------------- diff -urN linux-2.2.7/net/ipv4/ip_options.c linux-2.2.7.SuSE/net/ipv4/ip_options.c --- linux-2.2.7/net/ipv4/ip_options.c Sun Mar 21 16:22:00 1999 +++ linux-2.2.7.SuSE/net/ipv4/ip_options.c Wed Jun 2 17:52:05 1999 @@ -452,7 +452,6 @@ error: if (skb) { icmp_send(skb, ICMP_PARAMETERPROB, 0, htonl((pp_ptr-iph)<<24)); - kfree_skb(skb); } return -EINVAL; } --------------------------------------------------------------------------
-- michael -o) Hubert Mantel Goodbye, dots... /\\ _\_v
-- To get out of this list, please send email to majordomo@suse.com with this text in its body: unsubscribe suse-linux-e Check out the SuSE-FAQ at <A HREF="http://www.suse.com/Support/Doku/FAQ/"><A HREF="http://www.suse.com/Support/Doku/FAQ/</A">http://www.suse.com/Support/Doku/FAQ/</A</A>> and the archive at <A HREF="http://www.suse.com/Mailinglists/suse-linux-e/index.html"><A HREF="http://www.suse.com/Mailinglists/suse-linux-e/index.html</A">http://www.suse.com/Mailinglists/suse-linux-e/index.html</A</A>>