Re: kernel bug -> security problem

Miquel van Smoorenburg (miquels@drinkel.cistron.nl)
25 Oct 1996 21:35:00 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: H. Peter Anvin: "Re: noatime support in kernel?"
Previous message: Robin Becker: "Re: OFF TOPIC [was]Re: Linux needs control.exe"

In article <3.0b36.32.19961025122911.006b1bac@eyelab.msu.edu>,
Gary Schrock <root@eyelab.psy.msu.edu> wrote:
>At 09:12 AM 10/25/96 +0800, you wrote:
>>only the newer kernels (2.0.x) are affected by the bug.
>
>And, apparently, not everyone is affected. I just went from 2.0.22 to
>2.0.23 and still do not seem to have that bug:
>
>K:\EXPTS\cider3>ping -l 65510 35.8.64.179
>
>Pinging 35.8.64.179 with 65510 bytes of data:
>
>Request timed out.
>Request timed out.

Actually you should not be able to construct such a packet with the ping
program at all. The reason that you can do this under Windows '95 is that
it was (hold tight) a bug in the W95 ping utility. "Was" yes because even
more unbelievable they've fixed it in later versions of '95..

You'll have to downgrade your windows '95 (if such a thing is possible) ;)

Mike.

-- 
|  Miquel van Smoorenburg  \ The answer to Life, the Universe and Everything \
| miquels@drinkel.cistron.nl \ Just reinstall windows and try again, sir.     \

Next message: H. Peter Anvin: "Re: noatime support in kernel?"
Previous message: Robin Becker: "Re: OFF TOPIC [was]Re: Linux needs control.exe"