- Issued:
- 2010-05-10
- Updated:
- 2010-05-10
RHBA-2010:0395 - Bug Fix Advisory
Synopsis
iptables bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated iptables packages that resolve an issue are now available.
Description
The iptables utility controls the network packet filtering code in the
Linux kernel.
These updated iptables packages fix the following bug:
- the memory alignment of ipt_connlimit_data was incorrect on x86-based
systems. Running the following statements:
iptables -N test1234
iptables -A test1234 -m connlimit --connlimit-above 8
caused iptables to return an "Unknown error". The kernel log also recorded
an error as follows:
ip_tables: connlimit match: invalid size 24 != 16
This update adds an explicit aligned attribute to the ipt_connlimit_data
struct which corrects this. (BZ#553207)
Note: This fix depends on connlimit support being present in the kernel.
The Red Hat Enterprise Linux 4.8 kernel adds support for connlimits as of
errata update RHSA-2010:0394. Both updates must be installed to address
this bug.
All iptables users are advised to upgrade to these updated packages, which
resolve this issue.
Solution
Before applying this update, make sure all previously-released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259
Affected Products
- Red Hat Enterprise Linux Server 4 x86_64
- Red Hat Enterprise Linux Server 4 ia64
- Red Hat Enterprise Linux Server 4 i386
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 4.8 x86_64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 4.8 ia64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 4.8 i386
- Red Hat Enterprise Linux Workstation 4 x86_64
- Red Hat Enterprise Linux Workstation 4 ia64
- Red Hat Enterprise Linux Workstation 4 i386
- Red Hat Enterprise Linux Desktop 4 x86_64
- Red Hat Enterprise Linux Desktop 4 i386
- Red Hat Enterprise Linux for IBM z Systems 4 s390x
- Red Hat Enterprise Linux for IBM z Systems 4 s390
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8 s390x
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8 s390
- Red Hat Enterprise Linux for Power, big endian 4 ppc
- Red Hat Enterprise Linux for Power, big endian - Extended Update Support 4.8 ppc
Fixes
- BZ - 553207 - ip_tables: connlimit match: invalid size 24 != 16
CVEs
(none)
Red Hat Enterprise Linux Server 4
SRPM | |
---|---|
iptables-1.2.11-3.3.el4_8.src.rpm | SHA-256: 2d662bf3db5c988df9ff147c6307b51f98bf8eb6169c96b6f3929f72ca3ef098 |
x86_64 | |
iptables-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 949de3821920915ef22df5bc782a2153176b12fda05faeabb2b2fbf49086061f |
iptables-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 949de3821920915ef22df5bc782a2153176b12fda05faeabb2b2fbf49086061f |
iptables-devel-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 6d5c0d8c8dd532a148e4feb42a1232ece58374d424076eaf70151b205d0026e1 |
iptables-devel-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 6d5c0d8c8dd532a148e4feb42a1232ece58374d424076eaf70151b205d0026e1 |
iptables-ipv6-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 83f44f124291b4ec0d0ade54eb23bf4527d11eeae6d04977c3a95b7329e46997 |
iptables-ipv6-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 83f44f124291b4ec0d0ade54eb23bf4527d11eeae6d04977c3a95b7329e46997 |
ia64 | |
iptables-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: d90066643c53c58162a921d6d8a1b74d3ff1f6426107517bbde8f2c5008f1873 |
iptables-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: d90066643c53c58162a921d6d8a1b74d3ff1f6426107517bbde8f2c5008f1873 |
iptables-devel-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: b65706dc267e5f44f9f2467bd2bd371d182d07d187d449c2d89de816fc0b4bc6 |
iptables-devel-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: b65706dc267e5f44f9f2467bd2bd371d182d07d187d449c2d89de816fc0b4bc6 |
iptables-ipv6-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: e3ed3d48dd103040a112444f5df0c97d69981f91a5b054031b0dc7957c2effc3 |
iptables-ipv6-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: e3ed3d48dd103040a112444f5df0c97d69981f91a5b054031b0dc7957c2effc3 |
i386 | |
iptables-1.2.11-3.3.el4_8.i386.rpm | SHA-256: 29402a8dd3f807fdb7b1a94f5140d920922ee910ffc433a55f83563908739927 |
iptables-1.2.11-3.3.el4_8.i386.rpm | SHA-256: 29402a8dd3f807fdb7b1a94f5140d920922ee910ffc433a55f83563908739927 |
iptables-devel-1.2.11-3.3.el4_8.i386.rpm | SHA-256: 347054f9b3bc9016e19648606fdc79f692e6bd970f4882488b9d89a70062b0d4 |
iptables-devel-1.2.11-3.3.el4_8.i386.rpm | SHA-256: 347054f9b3bc9016e19648606fdc79f692e6bd970f4882488b9d89a70062b0d4 |
iptables-ipv6-1.2.11-3.3.el4_8.i386.rpm | SHA-256: bd548ddddd413f9228fd4f30a6422148893be7098b56abe8d57bbaefe9ef878c |
iptables-ipv6-1.2.11-3.3.el4_8.i386.rpm | SHA-256: bd548ddddd413f9228fd4f30a6422148893be7098b56abe8d57bbaefe9ef878c |
Red Hat Enterprise Linux for x86_64 - Extended Update Support 4.8
SRPM | |
---|---|
iptables-1.2.11-3.3.el4_8.src.rpm | SHA-256: 2d662bf3db5c988df9ff147c6307b51f98bf8eb6169c96b6f3929f72ca3ef098 |
x86_64 | |
iptables-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 949de3821920915ef22df5bc782a2153176b12fda05faeabb2b2fbf49086061f |
iptables-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 949de3821920915ef22df5bc782a2153176b12fda05faeabb2b2fbf49086061f |
iptables-devel-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 6d5c0d8c8dd532a148e4feb42a1232ece58374d424076eaf70151b205d0026e1 |
iptables-devel-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 6d5c0d8c8dd532a148e4feb42a1232ece58374d424076eaf70151b205d0026e1 |
iptables-ipv6-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 83f44f124291b4ec0d0ade54eb23bf4527d11eeae6d04977c3a95b7329e46997 |
iptables-ipv6-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 83f44f124291b4ec0d0ade54eb23bf4527d11eeae6d04977c3a95b7329e46997 |
ia64 | |
iptables-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: d90066643c53c58162a921d6d8a1b74d3ff1f6426107517bbde8f2c5008f1873 |
iptables-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: d90066643c53c58162a921d6d8a1b74d3ff1f6426107517bbde8f2c5008f1873 |
iptables-devel-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: b65706dc267e5f44f9f2467bd2bd371d182d07d187d449c2d89de816fc0b4bc6 |
iptables-devel-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: b65706dc267e5f44f9f2467bd2bd371d182d07d187d449c2d89de816fc0b4bc6 |
iptables-ipv6-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: e3ed3d48dd103040a112444f5df0c97d69981f91a5b054031b0dc7957c2effc3 |
iptables-ipv6-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: e3ed3d48dd103040a112444f5df0c97d69981f91a5b054031b0dc7957c2effc3 |
i386 | |
iptables-1.2.11-3.3.el4_8.i386.rpm | SHA-256: 29402a8dd3f807fdb7b1a94f5140d920922ee910ffc433a55f83563908739927 |
iptables-1.2.11-3.3.el4_8.i386.rpm | SHA-256: 29402a8dd3f807fdb7b1a94f5140d920922ee910ffc433a55f83563908739927 |
iptables-devel-1.2.11-3.3.el4_8.i386.rpm | SHA-256: 347054f9b3bc9016e19648606fdc79f692e6bd970f4882488b9d89a70062b0d4 |
iptables-devel-1.2.11-3.3.el4_8.i386.rpm | SHA-256: 347054f9b3bc9016e19648606fdc79f692e6bd970f4882488b9d89a70062b0d4 |
iptables-ipv6-1.2.11-3.3.el4_8.i386.rpm | SHA-256: bd548ddddd413f9228fd4f30a6422148893be7098b56abe8d57bbaefe9ef878c |
iptables-ipv6-1.2.11-3.3.el4_8.i386.rpm | SHA-256: bd548ddddd413f9228fd4f30a6422148893be7098b56abe8d57bbaefe9ef878c |
Red Hat Enterprise Linux Workstation 4
SRPM | |
---|---|
iptables-1.2.11-3.3.el4_8.src.rpm | SHA-256: 2d662bf3db5c988df9ff147c6307b51f98bf8eb6169c96b6f3929f72ca3ef098 |
x86_64 | |
iptables-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 949de3821920915ef22df5bc782a2153176b12fda05faeabb2b2fbf49086061f |
iptables-devel-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 6d5c0d8c8dd532a148e4feb42a1232ece58374d424076eaf70151b205d0026e1 |
iptables-ipv6-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 83f44f124291b4ec0d0ade54eb23bf4527d11eeae6d04977c3a95b7329e46997 |
ia64 | |
iptables-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: d90066643c53c58162a921d6d8a1b74d3ff1f6426107517bbde8f2c5008f1873 |
iptables-devel-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: b65706dc267e5f44f9f2467bd2bd371d182d07d187d449c2d89de816fc0b4bc6 |
iptables-ipv6-1.2.11-3.3.el4_8.ia64.rpm | SHA-256: e3ed3d48dd103040a112444f5df0c97d69981f91a5b054031b0dc7957c2effc3 |
i386 | |
iptables-1.2.11-3.3.el4_8.i386.rpm | SHA-256: 29402a8dd3f807fdb7b1a94f5140d920922ee910ffc433a55f83563908739927 |
iptables-devel-1.2.11-3.3.el4_8.i386.rpm | SHA-256: 347054f9b3bc9016e19648606fdc79f692e6bd970f4882488b9d89a70062b0d4 |
iptables-ipv6-1.2.11-3.3.el4_8.i386.rpm | SHA-256: bd548ddddd413f9228fd4f30a6422148893be7098b56abe8d57bbaefe9ef878c |
Red Hat Enterprise Linux Desktop 4
SRPM | |
---|---|
iptables-1.2.11-3.3.el4_8.src.rpm | SHA-256: 2d662bf3db5c988df9ff147c6307b51f98bf8eb6169c96b6f3929f72ca3ef098 |
x86_64 | |
iptables-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 949de3821920915ef22df5bc782a2153176b12fda05faeabb2b2fbf49086061f |
iptables-devel-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 6d5c0d8c8dd532a148e4feb42a1232ece58374d424076eaf70151b205d0026e1 |
iptables-ipv6-1.2.11-3.3.el4_8.x86_64.rpm | SHA-256: 83f44f124291b4ec0d0ade54eb23bf4527d11eeae6d04977c3a95b7329e46997 |
i386 | |
iptables-1.2.11-3.3.el4_8.i386.rpm | SHA-256: 29402a8dd3f807fdb7b1a94f5140d920922ee910ffc433a55f83563908739927 |
iptables-devel-1.2.11-3.3.el4_8.i386.rpm | SHA-256: 347054f9b3bc9016e19648606fdc79f692e6bd970f4882488b9d89a70062b0d4 |
iptables-ipv6-1.2.11-3.3.el4_8.i386.rpm | SHA-256: bd548ddddd413f9228fd4f30a6422148893be7098b56abe8d57bbaefe9ef878c |
Red Hat Enterprise Linux for IBM z Systems 4
SRPM | |
---|---|
iptables-1.2.11-3.3.el4_8.src.rpm | SHA-256: 2d662bf3db5c988df9ff147c6307b51f98bf8eb6169c96b6f3929f72ca3ef098 |
s390x | |
iptables-1.2.11-3.3.el4_8.s390x.rpm | SHA-256: 45e3c16293e16e6d88b9dc484e9489ebd63e163d728f7ff43cd842c1dd1d418c |
iptables-devel-1.2.11-3.3.el4_8.s390x.rpm | SHA-256: 1264338e68343daa4e7da976891b085cc594b20753a8fa15e683c36211b07878 |
iptables-ipv6-1.2.11-3.3.el4_8.s390x.rpm | SHA-256: e11185bdb0831256909c643a4f98c080bd11ebb6ea068e729142dcbe170877c4 |
s390 | |
iptables-1.2.11-3.3.el4_8.s390.rpm | SHA-256: f8324d2566cf5fea600f58010a2e88c2be9b20edaf16493310c624ad53242e5e |
iptables-devel-1.2.11-3.3.el4_8.s390.rpm | SHA-256: a118e6fb77fe16a8baf7bc1aadfcd95970a8f28145e39d476c8de01337bc1718 |
iptables-ipv6-1.2.11-3.3.el4_8.s390.rpm | SHA-256: 57737e6ef20075e83d3f325945db10b182d0574f5084721e32602b7715c13d06 |
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8
SRPM | |
---|---|
iptables-1.2.11-3.3.el4_8.src.rpm | SHA-256: 2d662bf3db5c988df9ff147c6307b51f98bf8eb6169c96b6f3929f72ca3ef098 |
s390x | |
iptables-1.2.11-3.3.el4_8.s390x.rpm | SHA-256: 45e3c16293e16e6d88b9dc484e9489ebd63e163d728f7ff43cd842c1dd1d418c |
iptables-devel-1.2.11-3.3.el4_8.s390x.rpm | SHA-256: 1264338e68343daa4e7da976891b085cc594b20753a8fa15e683c36211b07878 |
iptables-ipv6-1.2.11-3.3.el4_8.s390x.rpm | SHA-256: e11185bdb0831256909c643a4f98c080bd11ebb6ea068e729142dcbe170877c4 |
s390 | |
iptables-1.2.11-3.3.el4_8.s390.rpm | SHA-256: f8324d2566cf5fea600f58010a2e88c2be9b20edaf16493310c624ad53242e5e |
iptables-devel-1.2.11-3.3.el4_8.s390.rpm | SHA-256: a118e6fb77fe16a8baf7bc1aadfcd95970a8f28145e39d476c8de01337bc1718 |
iptables-ipv6-1.2.11-3.3.el4_8.s390.rpm | SHA-256: 57737e6ef20075e83d3f325945db10b182d0574f5084721e32602b7715c13d06 |
Red Hat Enterprise Linux for Power, big endian 4
SRPM | |
---|---|
iptables-1.2.11-3.3.el4_8.src.rpm | SHA-256: 2d662bf3db5c988df9ff147c6307b51f98bf8eb6169c96b6f3929f72ca3ef098 |
ppc | |
iptables-1.2.11-3.3.el4_8.ppc64.rpm | SHA-256: 5dcee19b8c17ffb082f0bcae2b964e34c8cf7663a30bcb3371c454b8b1acf438 |
iptables-devel-1.2.11-3.3.el4_8.ppc64.rpm | SHA-256: 753e7849df9f81d7c537ac6e794d30bc4fe1798b52ae2274324bcef933c2cea8 |
iptables-ipv6-1.2.11-3.3.el4_8.ppc64.rpm | SHA-256: e4375bbbea9e8c4b7dcb148ce4ba70e374dae3f1a10cd592f47f920c3312e0cc |
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 4.8
SRPM | |
---|---|
iptables-1.2.11-3.3.el4_8.src.rpm | SHA-256: 2d662bf3db5c988df9ff147c6307b51f98bf8eb6169c96b6f3929f72ca3ef098 |
ppc | |
iptables-1.2.11-3.3.el4_8.ppc64.rpm | SHA-256: 5dcee19b8c17ffb082f0bcae2b964e34c8cf7663a30bcb3371c454b8b1acf438 |
iptables-devel-1.2.11-3.3.el4_8.ppc64.rpm | SHA-256: 753e7849df9f81d7c537ac6e794d30bc4fe1798b52ae2274324bcef933c2cea8 |
iptables-ipv6-1.2.11-3.3.el4_8.ppc64.rpm | SHA-256: e4375bbbea9e8c4b7dcb148ce4ba70e374dae3f1a10cd592f47f920c3312e0cc |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.