|
Linux Kernel Route Cache Flooding Denial of Service
|
|
|
|
|
Secunia Advisory:
|
SA8786
|
|
|
Release Date:
|
2003-05-15
|
|
Last Update:
|
2004-12-22
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
DoS
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | Linux Kernel 2.4.x
|
|
| | CVE reference: | CVE-2003-0244 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
A vulnerability has been reported in the Linux Kernel, which can be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to the way the kernel handles caching of routing information. By flooding a Linux system with packets with spoofed source addresses, the handling of the cache will consume large amounts of CPU resources.
This can potentially bring a Linux system offline with a rate of only 400 packets/second by using carefully chosen source addresses that causes hash collisions in the table.
A DoS can still be performed, if the system uses iptables (netfilter) to filter traffic. This is even possible with randomly chosen IP addresses that don't cause a hash collision, since it just requires a higher rate of packets.
For further details about how this feature back-fired, see "Other References".
Solution:
The vulnerability has reportedly been fixed in one of the latest versions.
Update to the latest version.
Provided and/or discovered by:
Florian Weimer
Changelog:
2003-05-21: Florian Weimer has written a detailed description (see "Other References" section).
2004-12-22: Updated advisory.
Original Advisory:
http://marc.theaimsgroup.com/?l=linux-kernel&m=104956079213417
http://rhn.redhat.com/errata/RHSA-2003-172.html
Other References:
Detailed description:
http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0073.html
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
77 Related Secunia Security Advisories, displaying 10
|
|
|
1. Linux Kernel ASN.1 BER Decoding Vulnerability
|
|
2. Linux Kernel Denial of Service Vulnerabilities
|
|
3. Linux Kernel Multiple Vulnerabilities
|
|
4. Linux Kernel Multiple Vulnerabilities
|
|
5. Linux Kernel Multiple Vulnerabilities
|
|
6. Linux Kernel "isdn_net_setcfg()" Buffer Overflow Vulnerability
|
|
7. Linux Kernel ptrace Local Privilege Escalation Vulnerability
|
|
8. Linux Kernel AACRAID Driver IOCTL Security Bypass
|
|
9. Linux Kernel RTA_MAX Security Issue and Seed Refeed Weakness
|
|
10. Linux Kernel "L2CAP" and "HCI" Information Disclosure
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
