1 |
All: |
2 |
|
3 |
Mirror of "NISCC Vulnerability Advisory 236929" (Please don't abuse): |
4 |
<http://www.noved.org/~devon/www.uniras.gov.uk/vuls/2004/236929/> |
5 |
|
6 |
I think they focused on BGP because bringing down BGP connections would |
7 |
cause route damping and take networks offline and cause outages for a |
8 |
larger portion of people versus sending a RST for someone's large FTP |
9 |
download. :) Unless my understanding is wrong, this would affect *any* |
10 |
established TCP connection that is open for a period of time. |
11 |
|
12 |
Does anyone have any information about the Linux kernel? I checked the |
13 |
linux-kernel ML at MARC, but I didn't see anything about it. I saw |
14 |
something from Theo on the OpenBSD mailing list that OpenBSD had some |
15 |
protection already. I saw some discussion on the FreeBSD mailing lists |
16 |
and the Debian mailing lists also. |
17 |
|
18 |
Devon |
19 |
|
20 |
on 4/20/2004 4:21 PM Chris McCracken said the following: |
21 |
|
22 |
> It looks like the CERT Advisory is mainly focused on BGP. I must admit |
23 |
> I'm not all that well versed on TCP/IP internals anymore. Is this |
24 |
> mainly a transport provider problem (those running BGP), or does it |
25 |
> affect end systems as well? Obviously this is a major issue, and it |
26 |
> will be interesting to see how it pans out in the next few days. The |
27 |
> recommendations from CERT don't look to be simple "patch" solutions to |
28 |
> the problem. Thoughts? |
29 |
> |
30 |
> ~Chris |
31 |
> |
32 |
> vorlon wrote: |
33 |
> |
34 |
>> Hi, |
35 |
>> |
36 |
>> On 20.04.2004 21:47, Gard Spreemann wrote: |
37 |
>> |
38 |
>> > What's the status on this? Anybody heard anything much? The UK govt. |
39 |
>> site |
40 |
>> > seems to be slashdotted, so I'll have to use the Slashdot story: |
41 |
>> > |
42 |
>> http://slashdot.org/article.pl?sid=04/04/20/1738217&mode=thread&tid=126&tid=128&tid=172&tid=95 |
43 |
>> |
44 |
>> |
45 |
>> US-CERT just published this: |
46 |
>> <http://www.us-cert.gov/cas/techalerts/TA04-111A.html> |
47 |
>> ("Technical Cyber Security Alert TA04-111A - Vulnerabilities in TCP") |
48 |
>> |
49 |
>> which has a few more links too. |
50 |
>> |
51 |
>> Matthias |
52 |
>> |
53 |
>> |
54 |
>> |
55 |
>> -- |
56 |
>> gentoo-security@g.o mailing list |
57 |
>> |
58 |
> |
59 |
> |
60 |
> -- |
61 |
> gentoo-security@g.o mailing list |
62 |
> |
63 |
|
64 |
|
65 |
-- |
66 |
gentoo-security@g.o mailing list |