[Ksplice][RHEL6-Updates] Early update for UDP remote denial of service.
Quentin Casasnovas
quentin.casasnovas at oracle.com
Mon Jul 6 05:53:53 PDT 2015
Synopsis: Early update for UDP remote denial of service
We felt that it's important to ship this update early, before distributions
released kernels that fix the problem, because our audit showed that we
have a large number of customers affected by this issue.
DESCRIPTION
* Kernel hang on UDP flood with wrong checksums.
A flaw in the UDP handling of wrong checksums could lead to a kernel hang
under a UDP flood attack. A remote attacker could use this flaw to cause a
denial-of-service.
INSTALLING THE UPDATES
On systems that have "autoinstall = yes" in /etc/uptrack/uptrack.conf,
these updates will be installed automatically and you do not need to take
any action.
Alternatively, you can install these updates by running:
# /usr/sbin/uptrack-upgrade -y
SUPPORT
Ksplice support is available at ksplice-support_ww at oracle.com
More information about the Ksplice-RHEL6-Updates
mailing list