[Ksplice][RHEL 5 Updates] [Ksplice][EL6-Updates] Early update for UDP remote denial of service.
Quentin Casasnovas
quentin.casasnovas at oracle.com
Mon Jul 6 08:24:16 PDT 2015
On Mon, Jul 06, 2015 at 02:53:53PM +0200, Quentin Casasnovas wrote:
> Synopsis: Early update for UDP remote denial of service
>
> We felt that it's important to ship this update early, before distributions
> released kernels that fix the problem, because our audit showed that we
> have a large number of customers affected by this issue.
>
> DESCRIPTION
>
> * Kernel hang on UDP flood with wrong checksums.
>
> A flaw in the UDP handling of wrong checksums could lead to a kernel hang
> under a UDP flood attack. A remote attacker could use this flaw to cause a
> denial-of-service.
>
This has been assigned CVE-2015-5364 and CVE-2015-5366.
Ksplice support is available at ksplice-support_ww at oracle.com if you
have any request with regards to this.
More information about the Ksplice-RHEL5-Updates
mailing list