Login
Login-Name Passwort


 
Newsletter
Werbung

Sicherheit: Denial of Service in conntrack-tools
Aktuelle Meldungen Distributionen
Name: Denial of Service in conntrack-tools
ID: FEDORA-2015-1aee5e6f0b
Distribution: Fedora
Plattformen: Fedora 22
Datum: Mo, 4. Januar 2016, 09:39
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6496

Originalnachricht

Name        : conntrack-tools
Product : Fedora 22
Version : 1.4.2
Release : 9.fc22
URL : http://netfilter.org
Summary : Manipulate netfilter connection tracking table and run High
Availability
Description :
With conntrack-tools you can setup a High Availability cluster and
synchronize conntrack state between multiple firewalls.

The conntrack-tools package contains two programs:
- conntrack: the command line interface to interact with the connection
tracking system.
- conntrackd: the connection tracking userspace daemon that can be used to
deploy highly available GNU/Linux firewalls and collect
statistics of the firewall use.

conntrack is used to search, list, inspect and maintain the netfilter
connection tracking subsystem of the Linux kernel.
Using conntrack, you can dump a list of all (or a filtered selection of)
currently tracked connections, delete connections from the state table,
and even add new ones.
In addition, you can also monitor connection tracking events, e.g.
show an event message (one line) per newly established connection.

-------------------------------------------------------------------------------
-
Update Information:

Addresses a crasher (CVE-2015-6496) and various leaks
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1253755 - CVE-2015-6496 conntrackd crash on unexpected network
traffic
https://bugzilla.redhat.com/show_bug.cgi?id=1253755
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update conntrack-tools' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung