Public bug reported: Binary package hint: linux-image-2.6.20-16-generic
Latest Linux-Kernel 2.6.20.15 fixes a security vulnerability in the part of netfilter which handles the VoIP protocol H.323. Could someone from the kernel team please check if Feisties kernel is affected? From: http://kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.15 [begin quote] commit cd4a337ed99dc212ce396b319f96d3e867a816f9 Author: Greg Kroah-Hartman <[EMAIL PROTECTED]> Date: Fri Jul 6 21:52:58 2007 -0700 Linux 2.6.20.15 commit c57b6320b85a739537cd67142f0c7c601e79ec05 Author: Jing Min Zhao <[EMAIL PROTECTED]> Date: Thu Jul 5 20:42:14 2007 +0200 nf_conntrack_h323: add checking of out-of-range on choices' index values [NETFILTER]: nf_conntrack_h323: add checking of out-of-range on choices' index values Choices' index values may be out of range while still encoded in the fixed length bit-field. This bug may cause access to undefined types (NULL pointers) and thus crashes (Reported by Zhongling Wen). This patch also adds checking of decode flag when decoding SEQUENCEs. Signed-off-by: Jing Min Zhao <[EMAIL PROTECTED]> Signed-off-by: Patrick McHardy <[EMAIL PROTECTED]> Signed-off-by: David S. Miller <[EMAIL PROTECTED]> Signed-off-by: Greg Kroah-Hartman <[EMAIL PROTECTED]> [end quote] ** Affects: linux-source-2.6.20 (Ubuntu) Importance: Undecided Status: New ** Visibility changed to: Public -- [Feisty] Kernel 2.6.20: Netfilter/H.323 vulnerability https://bugs.launchpad.net/bugs/125000 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
