SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com






Category:   OS (Linux)  >   iptables Vendors:   Netfilter.org
iptables May Fail to Automatically Load Some Modules
SecurityTracker Alert ID:  1012025
SecurityTracker URL:  http://securitytracker.com/id/1012025
CVE Reference:   CAN-2004-0986   (Links to External Site)
Date:  Nov 1 2004
Impact:   Host/resource access via network, Modification of system information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 1.2.11
Description:   A vulnerability was reported in iptables. In certain configurations, some modules may not load automatically.

It is reported that in certain situations, the software may fail to load the required modules. As a result, some rules may not be properly enforced.

The flaw resides in 'iptables.c' and 'ip6tables.c'.

Faheem Mitha is credited with reporting this flaw.

Impact:   The software may fail to load some modules, potentially causing some rules to not be properly enforced.
Solution:   A fix is available via CVS.
Vendor URL:  www.netfilter.org/ (Links to External Site)
Cause:   Exception handling error
Underlying OS:  

Message History:   This archive entry has one or more follow-up message(s) listed below.
Nov 1 2004 (Debian Issues Fix) iptables May Fail to Automatically Load Some Modules   (joey@infodrom.org (Martin Schulze))
Debian has released a fix.
Nov 5 2004 (Mandrake Issues Fix) iptables May Fail to Automatically Load Some Modules   (Mandrake Linux Security Team <security@linux-mandrake.com>)
Mandrake has released a fix.



 Source Message Contents

Date:  Mon, 1 Nov 2004 15:31:56 -0500
Subject:  [none]


A vulnerability was reported in iptables.  In certain situations, the software may
fail to load the required modules.  As a result, some rules may not be properly 
enforced.

Faheem Mitha is credited with reporting this flaw.

CVE: CAN-2004-0986
 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

Copyright 2014, SecurityGlobal.net LLC