CVE-2003-0244 Information

Description

The route cache implementation in Linux 2.4 and the Netfilter IP conntrack module allows remote attackers to cause a denial of service (CPU consumption) via packets with forged source addresses that cause a large number of hash table collisions.

Reference

http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0073.html http://marc.info/?l=bugtraq&m=105301461726555&w=2 http://marc.info/?l=bugtraq&m=105595901923063&w=2 http://marc.info/?l=linux-kernel&m=104956079213417 http://www.debian.org/security/2003/dsa-311 http://www.debian.org/security/2003/dsa-312 http://www.debian.org/security/2003/dsa-332 http://www.debian.org/security/2003/dsa-336 http://www.debian.org/security/2004/dsa-442 http://www.enyo.de/fw/security/notes/linux-dst-cache-dos.html http://www.mandriva.com/security/advisories?name=MDKSA-2003:066 http://www.mandriva.com/security/advisories?name=MDKSA-2003:074 http://www.redhat.com/support/errata/RHSA-2003-145.html http://www.redhat.com/support/errata/RHSA-2003-147.html http://www.redhat.com/support/errata/RHSA-2003-172.html http://www.secunia.com/advisories/8786/ http://www.securityfocus.com/bid/7601 https://exchange.xforce.ibmcloud.com/vulnerabilities/15382 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A261