Maybe, but Bastian's original question remains unanswered: SuSE 6.3 shipped with modules-2.3.6-3. Does this version already contain the vulnerability? And if so, can we expect a fixed RPM from SuSE?
With a few million lines of custom code on 500+ SuSE 6.3 boxes here, it is not too assuring that ping6 is the only package _you_ know to exploit the bug.
Cheers, Knut
Right. I'll have the other distributions updated, too.
It's better...
Roman.
--
- -
| Roman Drahtmüller