Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 106294

Summary: Kernel: Another ipt_recent vulnerability (CAN-2005-2873)
Product: Gentoo Security Reporter: Daniel Drake (RETIRED) <dsd>
Component: KernelAssignee: Gentoo Security <security>
Status: RESOLVED INVALID    
Severity: normal CC: security-kernel
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: [2.6 < 2.6.12]
Package list:
Runtime testing required: ---

Description Daniel Drake (RETIRED) gentoo-dev 2005-09-17 10:51:39 UTC 
The ipt_recent kernel module (ipt_recent.c) in Linux kernel 2.6.12 and earlier
does not properly perform certain time tests when the jiffies value is greater
than LONG_MAX, which can cause ipt_recent netfilter rules to block too early, a
different vulnerability than CAN-2005-2872.
Comment 1 Daniel Drake (RETIRED) gentoo-dev 2005-09-17 10:56:30 UTC 
This is fixed in 2.6.12, description is wrong.
Comment 2 Tim Yamin (RETIRED) gentoo-dev 2005-11-26 08:40:20 UTC 
Closing, seems a non-issue (everything's at 2.6.12 or better).