[LWN Logo]

To: suse-security@suse.com
Date: Sat, 29 Apr 2000 15:42:16 +0200 (MEST)
From: marc@suse.de (Marc Heuse)
Subject: [suse-security-announce] Linux kernel masquerading vulnerability

Hi,

everyone who does masquerading with a linux kernel: please note that all
kernels are known to have the following vulnerability:

The ftp and udp masquerading modules can be used by an attacker in some
circumstances to access internal machines.


These bugs will hopefully be fixed by the linux kernel team in version 2.2.15

We will provide a kernel update once the new kernel version is available.

Yours,
	SuSE Security Team

-- 
   Marc Heuse, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg
   E@mail: marc@suse.de  Function: Security Support & Auditing
   "lynx -source http://www.suse.de/~marc/marc.pgp | pgp -fka"
Key fingerprint = B5 07 B6 4E 9C EF 27 EE  16 D9 70 D4 87 B5 63 6C

-- 
To unsubscribe, e-mail: suse-security-announce-unsubscribe@suse.com
For additional commands, e-mail: suse-security-announce-help@suse.com