The Netfilter code also contained a memory leak. Certain locally generated packet fragments are reassembled twice, which caused a double allocation of a data structure. This could be locally exploited to crash the machine due to kernel memory exhaustion. (CAN-2005-0210)
Mass-Ccing kern-sec@gentoo.org to make sure Kernel Security guys know about all of these...
Created attachment 55778 [details, diff] Patch
mips-sources fixed.
gentoo-sources-2.6 unaffected
All fixed, closing bug.