Updated iptables packages are available

Advisory:	RHSA-2001:144-04
Type:	Security Advisory
Severity:	N/A
Issued on:	2001-10-30
Last updated on:	2001-11-05
Affected Products:	Red Hat Linux 7.1 Red Hat Linux 7.2
OVAL:	N/A
CVEs (cve.mitre.org):	CVE-2001-1387 CVE-2001-1388

Details

A new version of iptables fixing various minor security problems and some
other bugs is available.

Some problems in earlier releases of iptables could lead to bad
iptables-save files, causing the firewall not to come up when iptables
was restarted (e.g. at system reboot).

This release also fixes some other problems.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade. Only those
RPMs which are currently installed will be updated. Those RPMs which are
not installed but included in the list will not be updated. Note that you
can also use wildcards (*.rpm) if your current directory *only* contains the
desired RPMs.

Please note that this update is also available via Red Hat Network. Many
people find this an easier way to apply updates. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Updated packages

Red Hat Linux 7.1

SRPMS:
iptables-1.2.4-0.71.2.src.rpm File outdated by: RHSA-2003:213	`aee09a8279c146b9a8e77b39615814f1`

Alpha:
iptables-1.2.4-0.71.2.alpha.rpm File outdated by: RHSA-2002:205	`c271aaa550b1c11e0c8d66ccff0b3648`
iptables-ipv6-1.2.4-0.71.2.alpha.rpm File outdated by: RHSA-2002:205	`afa4630374a6c9a927ba46f4327dcc26`

IA-32:
iptables-1.2.4-0.71.2.i386.rpm File outdated by: RHSA-2003:213	`d8af43db7c333a7d72b6a10ea9102fd6`
iptables-ipv6-1.2.4-0.71.2.i386.rpm File outdated by: RHSA-2003:213	`419376e43b186ddbb9db047f225063f6`

Red Hat Linux 7.2

SRPMS:
iptables-1.2.4-2.src.rpm File outdated by: RHSA-2003:213	`e7eb4c85819f1a3563a411685071cad4`

IA-32:
iptables-1.2.4-2.i386.rpm File outdated by: RHSA-2003:213	`6434f2a021ac8ca30b04d3f560f7a76a`
iptables-ipv6-1.2.4-2.i386.rpm File outdated by: RHSA-2003:213	`b8abccb90b6a019a8c0ca5f4c43da8b5`

Bugs fixed (see bugzilla for more information)

31133 - do not assume that nat, mangle tables exist
42990 - iptables-save: -c option causing problems as of 1.2.2-1.i386
50500 - iptables-save saves --reject-with icmp-host-prohibited as --reject-with tcp-reset
53325 - Errata conversion of iptables .... -m limit ##/sec
54160 - iptables-save and iptables-restore parse and produce quotes differently from each other
54280 - string_to_number buglets

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-1387
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-1388

Keywords

firewall, iptables, logging

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/