Rapid7 Vulnerability & Exploit Database

RHSA-2002:028: Updated 2.4 kernel available

Back to Search

RHSA-2002:028: Updated 2.4 kernel available

Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
03/08/2002
Created
07/25/2018
Added
10/28/2005
Modified
06/21/2018

Description

The Linux Netfilter team has found a problem in the "IRC connection tracking" component of the firewall within the linux kernel. This problem affects Red Hat Linux versions 7.1 and 7.2.

The Linux Netfilter team has found a problem in the IRC connection tracking component of the firewall within the linux kernel. This component is distributed with kernels in Red Hat Linux 7.1 and 7.2, although it is not used in default installations. The problem consists of an excessively broad netmask setting which is applied to check if an "IRC DCC" connection through a masquerading firewall should be allowed. This results in unwanted ports being opened on the firewall, which could, depending on the firewall filter ruleset, allow inbound connections. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2002-0060 to this issue. Thanks to Jozsef Kadlecsik and Harald Welte of the netfilter team. Users are advised to upgrade to this errata kernel containing patches which fix these issues.

Solution(s)

  • redhat-upgrade-kernel
  • redhat-upgrade-kernel-boot
  • redhat-upgrade-kernel-debug
  • redhat-upgrade-kernel-doc
  • redhat-upgrade-kernel-enterprise
  • redhat-upgrade-kernel-headers
  • redhat-upgrade-kernel-smp
  • redhat-upgrade-kernel-source

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;