From vmiklos at frugalware.org  Wed Dec  9 12:08:51 2009
From: vmiklos at frugalware.org (Miklos Vajna)
Date: Wed,  9 Dec 2009 12:08:51 +0100 (CET)
Subject: [Frugalware-security] [ FSA-625 ] kernel
Message-ID: <20091209110851.CACFB1240014@genesis.frugalware.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Frugalware Security Advisory                           FSA-625

Date: 2009-12-09
Package: kernel
Vulnerable versions: <= 2.6.30-3
Unaffected versions: >= 2.6.30-4getorin1
Related bugreport: http://bugs.frugalware.org/task/4047
CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1298

Description
===========

This fixes a vulnerability, which potentially can be exploited by malicious people to cause a DoS (immediate OOPS and hang, complete loss of response, even of console).
The vulnerability is caused due to an error within the "ip_defrag()" function in net/ipv4/ip_fragment.c, which may be exploited to cause a NULL pointer dereference by sending overly large packets to a vulnerable system.

Updated Packages
================

Check if you have kernel installed:

	# pacman-g2 -Q kernel

If found, then you should upgrade to the latest version:

	# pacman-g2 -Sy kernel

Availability
============

The latest revision of this advisory is available at
http://frugalware.org/security/625

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: See http://ftp.frugalware.org/pub/README.GPG for info

iEYEARECAAYFAksfhUMACgkQZ7NElSD1VhnTfwCeIIBHIWhczCoLJf35kMCFdqzu
olgAnAmpC0Daa9UfgSVGDuhq74SoIDJ9
=CsoG
-----END PGP SIGNATURE-----