[PATCH 0/1] [CVE-2012-2663] [HARDY] [LUCID] [NATTY] [ONEIRIC] [PRECISE] tcp: drop SYN+FIN messages
Brad Figg
brad.figg at canonical.com
Thu May 31 22:58:53 UTC 2012
With current stable Linux kernel release (as well as with most of the previous
versions) blocking TCP packets with the SYN bit set and the ACK,RST and FIN
bits cleared won't prevent incoming TCP connections.
Eric Dumazet (1):
tcp: drop SYN+FIN messages
net/ipv4/tcp_input.c | 2 ++
1 file changed, 2 insertions(+)
--
1.7.9.5
More information about the kernel-team
mailing list