Re: Linux 2.4.27 SECURITY BUG - TCP Local (probable Remote) Denial of Service

To: admin@xxxxxxxxxxx
Subject: Re: Linux 2.4.27 SECURITY BUG - TCP Local (probable Remote) Denial of Service
From: "David S. Miller" <davem@xxxxxxxxxxxxx>
Date: Sat, 11 Sep 2004 18:12:05 -0700
Cc: linux-kernel@xxxxxxxxxxxxxxx, grsecurity@xxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx
In-reply-to: <004c01c49848$2608e180$0200a8c0@wolf>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <004c01c49848$2608e180$0200a8c0@wolf>

Close wait means the application locally has not closed
the file descriptor, yet the remote end has sent
a FIN.

This is %99 of the time an application bug.

But since you haven't provided much detail of the problem
nobody will ever know exactly what you're talking about.

Please, do me and everyone else here on this list a real huge
favor, don't post bug reports without all the details, you're
just wasting everyone's time.  If it's exploitable, even more
reason to post every single detail so we can work on a fix if
necessary as fast as possible.

References:
- Linux 2.4.27 SECURITY BUG - TCP Local (probable Remote) Denial of Service
  - From: Wolfpaw - Dale Corse

Prev by Date: problem in voip environment
Next by Date: Samba 3.0 DoS Vulberabilities (CAN-2004-0807 & CAN-2004-0808)
Previous by thread: Linux 2.4.27 SECURITY BUG - TCP Local (probable Remote) Denial of Service
Next by thread: F-Secure Internet Gatekeeper Content Scanning Server Denial of Service [iDEFENSE]
Index(es):
- Date
- Thread