Kernel: FTP iptables vulnerability in 2.4 kernel and general bug fixes

Advisory:	RHSA-2001:084-03
Type:	Security Advisory
Severity:	N/A
Issued on:	2001-06-21
Last updated on:	2001-06-21
Affected Products:	Red Hat Linux 7.1
OVAL:	N/A
CVEs (cve.mitre.org):	CVE-2001-0405

Details

A security hole has been found that does not affect the default
configuration of Red Hat Linux, but it can affect some custom
configurations of Red Hat Linux 7.1. The bug is specific
to the Linux 2.4 kernel series. Aside from the fix, countless bugfixes
have been applied to this kernel as a result of code-audits by the
MC project of the Stanford University and others.

A vulnerability in iptables "RELATED" connection tracking has been
discovered. When using iptables to allow FTP "RELATED" connections
through the firewall, carefully constructed PORT commands can open
arbitrary holes in the firewall.

Default installations of Red Hat Linux 7.1 are not vulnerable; however
upgrading to this kernel is recommended regardless in order to benefit from
the other bug fixes in this kernel.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

The procedure for upgrading the kernel is documented at:

http://www.redhat.com/support/docs/howto/kernel-upgrade/kernel-upgrade.html

Please read the directions for your architecture carefully before
proceeding with the kernel upgrade.

Please note that this update is also available via Red Hat Network. Many
people find this an easier way to apply updates. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Updated packages

Red Hat Linux 7.1

IA-32:
ftp://updates.redhat.com/7.1/en/os/i386/devfsd-2.4.3-12.i386.rpm Missing file	`56441741db1afc54585c09d5d70958d2`
kernel-2.4.3-12.i386.rpm File outdated by: RHSA-2003:417	`dc7d6ca72aa0a81cd9070ac41c00c084`
kernel-2.4.3-12.i586.rpm File outdated by: RHSA-2003:417	`f2c2424f9ab4e04ae10ca81ef971edca`
kernel-2.4.3-12.i686.rpm File outdated by: RHSA-2003:417	`6e4dfbf5e9381a7c37113f61d77276df`
kernel-BOOT-2.4.3-12.i386.rpm File outdated by: RHSA-2003:417	`33eaefca0670a7908d2dd27bae24937a`
kernel-doc-2.4.3-12.i386.rpm File outdated by: RHSA-2003:417	`d6494b754931b3f8cad2a9db985e9183`
kernel-enterprise-2.4.3-12.i686.rpm File outdated by: RHBA-2002:104	`0ef5481dd241cdae1df75b7f4cd3a213`
kernel-headers-2.4.3-12.i386.rpm File outdated by: RHBA-2002:104	`6409be31e631616ad1382dd8abe49009`
kernel-smp-2.4.3-12.i586.rpm File outdated by: RHSA-2003:417	`dc5b453ba1f85cbe7747c016fe957c5c`
kernel-smp-2.4.3-12.i686.rpm File outdated by: RHSA-2003:417	`5588b32b37b96493ce4d37eaaa1e2f3f`
kernel-source-2.4.3-12.i386.rpm File outdated by: RHSA-2003:417	`047d31db622884f59036b2de6c02f72a`

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0405
http://www.redhat.com/support/errata/RHSA-2001-052.html
http://www.redhat.com/support/docs/howto/kernel-upgrade/kernel-upgrade.html

Keywords

kernel

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/