To: suse-security@suse.com Date: Sat, 29 Apr 2000 15:42:16 +0200 (MEST) From: marc@suse.de (Marc Heuse) Subject: [suse-security-announce] Linux kernel masquerading vulnerability Hi, everyone who does masquerading with a linux kernel: please note that all kernels are known to have the following vulnerability: The ftp and udp masquerading modules can be used by an attacker in some circumstances to access internal machines. These bugs will hopefully be fixed by the linux kernel team in version 2.2.15 We will provide a kernel update once the new kernel version is available. Yours, SuSE Security Team -- Marc Heuse, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg E@mail: marc@suse.de Function: Security Support & Auditing "lynx -source http://www.suse.de/~marc/marc.pgp | pgp -fka" Key fingerprint = B5 07 B6 4E 9C EF 27 EE 16 D9 70 D4 87 B5 63 6C -- To unsubscribe, e-mail: suse-security-announce-unsubscribe@suse.com For additional commands, e-mail: suse-security-announce-help@suse.com