[Ksplice][RHEL 5 Updates] Early update for UDP remote denial of service.

[Quentin Casasnovas]

Synopsis: Early update for UDP remote denial of service

We felt that it's important to ship this update early, before distributions
released kernels that fix the problem, because our audit showed that we
have a large number of customers affected by this issue.

DESCRIPTION

* Kernel hang on UDP flood with wrong checksums.

A flaw in the UDP handling of wrong checksums could lead to a kernel hang
under a UDP flood attack.  A remote attacker could use this flaw to cause a
denial-of-service.

INSTALLING THE UPDATES

On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to take
any action.

Alternatively, you can install these updates by running:

# /usr/sbin/uptrack-upgrade -y

SUPPORT

Ksplice support is available at ksplice-support_ww at oracle.com