113324 – Kernel: Spoofed packets forwarding using bridge (CVE-2005-3272)

Bug 113324 - Kernel: Spoofed packets forwarding using bridge (CVE-2005-3272)

Summary: Kernel: Spoofed packets forwarding using bridge (CVE-2005-3272)

Status:	RESOLVED INVALID

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Kernel (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2005-11-23 02:04 UTC by Thierry Carrez (RETIRED)
Modified:	2005-11-26 09:10 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Thierry Carrez (RETIRED) gentoo-dev

2005-11-23 02:04:02 UTC

In Ubuntu's USN-219-1:

Stephen Hemming discovered a weakness in the network bridge driver.
Packets which had already been dropped by the packet filter could
poison the forwarding table, which could be exploited to make the
bridge forward spoofed packages. This vulnerability only affects
Ubuntu 4.10 and 5.04. (CVE-2005-3272)

Comment 1 Tim Yamin (RETIRED) gentoo-dev

2005-11-26 09:10:40 UTC

CVE says < 2.6.12 so I'm closing this one as our 2.6 trees are 2.6.12 or later.