Re: [RAZOR] Linux kernel IP masquerading vulnerability (_actual_ patch)

From: Juanjo Ciarlante (jjo@mendoza.gov.ar)
Date: 07/31/01

Previous message: Darren Reed: "Re: [RAZOR] Linux kernel IP masquerading vulnerability"
In reply to: Michal Zalewski: "[RAZOR] Linux kernel IP masquerading vulnerability"
Next in thread: Darren Reed: "Re: [RAZOR] Linux kernel IP masquerading vulnerability (_actual_ patch)"
Reply: Darren Reed: "Re: [RAZOR] Linux kernel IP masquerading vulnerability (_actual_ patch)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Mon, 30 Jul 2001 22:42:00 -0300
From: Juanjo Ciarlante <jjo@mendoza.gov.ar>
To: BugTraq <bugtraq@securityfocus.com>
Subject: Re: [RAZOR] Linux kernel IP masquerading vulnerability (_actual_ patch)
Message-ID: <20010730224200.H2151@mendoza.gov.ar>

On Mon, Jul 30 2001 12:49:51 Michal Zalewski wrote:
> Topic:
> A remotely exploitable IP masquerading vulnerability in the Linux
> kernel can be used to penetrate protected private networks.
> :
> Vendor Response/Fix Information:
>
> Below is a patch against Linux 2.2.20pre kernel written by the I
> masquerading subsystem maintainer, Juanjo Ciarlante
> ...
The _actual_ working patch is attached, please apply this one, and of
course read original post by M. Zalewski:
http://www.securityfocus.com/archive/1/200361

--JuanJo Ciarlante
Linux IP MASQ 2.2 maintainer

text/plain attachment: ip_masq_irc-2.2.19-dcc_check-3.diff

Previous message: Darren Reed: "Re: [RAZOR] Linux kernel IP masquerading vulnerability"
In reply to: Michal Zalewski: "[RAZOR] Linux kernel IP masquerading vulnerability"
Next in thread: Darren Reed: "Re: [RAZOR] Linux kernel IP masquerading vulnerability (_actual_ patch)"
Reply: Darren Reed: "Re: [RAZOR] Linux kernel IP masquerading vulnerability (_actual_ patch)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: [RFC] Small PCI core patch
... what if this patch really did go in? ... Nothing that is currently in the kernel.org kernel tree, right, ... Oh yeah, closed source drivers that are out side of the tree, but who ... What you are doing is trying to take from Linux and not ...
(Linux-Kernel)
Re: Nobody should ever need to patch the kernel!!
... just look around for the most famous linux kernel patches... ... You cannot enable shfs mounts without a patch... ... programmers, what were they thinking when they programmed that part, ...
(comp.os.linux.development.system)
Re: weird update problems
... When they said patch, ... But I do agree on the Linux front. ... >>> We have been seeing a lot of issues with the latest kernel update. ...
(Ubuntu)
Re: Nobody should ever need to patch the kernel!!
... just look around for the most famous linux kernel patches... ... You cannot enable shfs mounts without a patch... ... The kernel programmers, what were they thinking when they programmed that part, that the number of supported filesystems by linux was not intended to raise? ...
(comp.os.linux.development.system)
Re: differences between kernel-tree and kernel-source and kernel image
... > will this install the kernel or try to patch an existing 2.6 kernel or ... affix-source - Driver source for the Affix Bluetooth protocol stack for Linux ... atlas-doc - Automatically Tuned Linear Algebra Software,documentation ...
(Debian-User)