|
Bugzilla – Full Text Bug Listing |
| Summary: | VUL-0: CVE-2005-3272: kernel: remote attackers can poison the bridge forwardiung table | ||
|---|---|---|---|
| Product: | [Novell Products] SUSE Security Incidents | Reporter: | Marcus Meissner <meissner> |
| Component: | Incidents | Assignee: | Olaf Kirch <okir> |
| Status: | RESOLVED WONTFIX | QA Contact: | Security Team bot <security-team> |
| Severity: | Major | ||
| Priority: | P5 - None | CC: | security-team |
| Version: | unspecified | ||
| Target Milestone: | --- | ||
| Hardware: | Other | ||
| OS: | Other | ||
| Whiteboard: | CVE-2005-3272: CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:P/A:N) | ||
| Found By: | Other | Services Priority: | |
| Business Priority: | Blocker: | --- | |
| Marketing QA Status: | --- | IT Deployment: | --- |
|
Description
Marcus Meissner
2005-11-08 16:24:20 UTC
code in sles9 looks different a bit, but I guess it is affected. olaf, I think we need to fix this, do you agree? remote -> major Looking "a bit different" sure is an understatement. Backporting this fix is not trivial at all. In fact doing so may require a partial backport from 2.6.12 (at least the br_fdb_update function may need to be backported, and that seems to pull in some additional stuff). I am actually reluctant to include this change at this time in the product release cycle. Such a change needs more testing. Please comment. since this is affects the local lan this is not that problematic. (other ways of attacking the network are possible). I guess we can leave out fixing for older products and just mark it fixed for the upcoming products. CVE-2005-3272: CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:P/A:N) |