Bug 144421

Summary: [security-hole] SUSE Yast Firewall doesn't block IPv6 attacks
Product: [openSUSE] SUSE LINUX 10.0 Reporter: Alexey Eremenko <al4321>
Component: YaST2Assignee: Ludwig Nussel <lnussel>
Status: RESOLVED WORKSFORME QA Contact: Klaus Kämpf <kkaempf>
Severity: Critical    
Priority: P5 - None CC: meissner, suse-beta
Version: Final   
Target Milestone: ---   
Hardware: All   
OS: SuSE Linux 10.0   
Whiteboard:
Found By: Customer Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Alexey Eremenko 2006-01-20 16:15:00 UTC 
By default, SUSE Linux 10.0 enables both IP and IPv6 addresses, however the SUSE Firewall in Yast protects only vs. IP attacks, and leaves no protection against IPv6 attacks !

This is a *very* serious security hole, because if there's another hole in, in some application, enemy hacker can take the system's control !
Think of Microsoft Blaster Virus for Windows XP - something like this is possible for SUSE Linux 10.0 now !

Please make sure, that SUSE Linux 10.1 Firewall _closes_ all protocols.
Comment 1 Ludwig Nussel 2006-01-23 08:16:54 UTC 
# ip6tables -vnL INPUT|grep DROP
Chain INPUT (policy DROP 0 packets, 0 bytes)
    0     0 DROP       all      *      *       ::/0                 ::/0
# cat /etc/SuSE-release
SUSE LINUX 10.0.42 (i586) OSS Beta1
VERSION = 10.0.42