security flaw

The rosertioctl function in roseroute.c for Radionet Open Source Environment ROSE in Linux 2.6 kernels before 2.6.12, and 2.4 before 2.4.29, does not properly verify the ndigis argument for a new route, which allows attackers to trigger array out-of-bounds errors with a large number of digipeats...

security flaw

Integer overflow in the ipsetsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 through 2.6.3 allows local users to cause a denial of service crash or execute arbitrary code via the MCASTMSFILTER socket option...

CVE-2003-0467

The CVE-2003-0467 issue affects Netfilter NAT SACK handling (ip_nat_sack_adjust) in Linux kernels 2.4.20 and some 2.5.x when NAT FTP/IRC is enabled or ip_nat_ftp/irc modules are loaded. The root cause is an integer signedness handling in the Sack adjustment logic, which could allow a remote attac...

CVE-2003-0467

Unknown vulnerability in ipnatsackadjust of Netfilter in Linux kernels 2.4.20, and some 2.5.x, when CONFIGIPNFNATFTP or CONFIGIPNFNATIRC is enabled, or the ipnatftp or ipnatirc modules are loaded, allows remote attackers to cause a denial of service crash in systems using NAT, possibly due to an...

[SECURITY] Netfilter Security Advisory: NAT Remote DOS (SACK mangle)

Netfilter Core Team Security Advisory CVE: CAN-2003-0467 Subject: Netfilter / NAT Remote DoS Released: 01 Aug 2003 Effects: Under limited circumstances, a remote user may be able to crash a machine doing Network Address Translation NAT. Estimated Severity: Medium. Systems Affected: Linux 2.4.20...

2.4.21 kernels available

Precompiled Linux 2.4.21 kernels and source packages are now available for Slackware 9.0 and -current. These provide an improved version of the ptrace fix that had been applied to 2.4.20 in Slackware 9.0 for example, command line options now appear correctly when root does 'ps ax', and fix a...

CVE-2002-0429

The iBCS routines in arch/i386/kernel/traps.c for Linux kernels 2.4.18 and earlier on x86 systems allow local users to kill arbitrary processes via a a binary compatibility interface lcall...

CVE-1999-1442

Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of service crash via a particular sequence of instructions, possibly related to accessing addresses outside of segments...

CVE-1999-0804

Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths...

CVE-1999-1442

Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of service crash via a particular sequence of instructions, possibly related to accessing addresses outside of segments...