Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 113324

Summary: Kernel: Spoofed packets forwarding using bridge (CVE-2005-3272)
Product: Gentoo Security Reporter: Thierry Carrez (RETIRED) <koon>
Component: KernelAssignee: Gentoo Security <security>
Status: RESOLVED INVALID    
Severity: normal CC: security-kernel
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---

Description Thierry Carrez (RETIRED) gentoo-dev 2005-11-23 02:04:02 UTC 
In Ubuntu's USN-219-1:

Stephen Hemming discovered a weakness in the network bridge driver.
Packets which had already been dropped by the packet filter could
poison the forwarding table, which could be exploited to make the
bridge forward spoofed packages. This vulnerability only affects
Ubuntu 4.10 and 5.04. (CVE-2005-3272)
Comment 1 Tim Yamin (RETIRED) gentoo-dev 2005-11-26 09:10:40 UTC 
CVE says < 2.6.12 so I'm closing this one as our 2.6 trees are 2.6.12 or later.