Vulnerability Bulletins

int(1116)

Vulnerability Bulletins

Fallo de inicialización en iptables
Vulnerability classification
Property	Value
Confidence level	Oficial
Impact	Interrupcion del Servicio
Dificulty	Experto
Required attacker level	Acceso remoto con cuenta
System information
Property	Value
Affected manufacturer	GNU/Linux
Affected software	iptables
Description
Se ha descubierto una vulnerabilidad en iptables. La vulnerabilidad reside en que iptables bajo determinadas condiciones no carga todos los módulos que requiere. Este problema podría llevar a un fallo de inicialización y que, por ejemplo, no se carguen las reglas configuradas en un script de arranque.
Solution
Actualización de software Debian Linux Debian Linux 3.0 Source http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2.dsc http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2.diff.gz http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a.orig.tar.gz Alpha http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_alpha.deb http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_alpha.deb ARM http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_arm.deb http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_arm.deb Intel IA-32 http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_i386.deb http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_i386.deb Intel IA-64 http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_ia64.deb http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_ia64.deb HP Precision http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_hppa.deb http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_hppa.deb Motorola 680x0 http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_m68k.deb http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_m68k.deb Big endian MIPS http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_mips.deb http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_mips.deb Little endian MIPS http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_mipsel.deb http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_mipsel.deb PowerPC http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_powerpc.deb http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_powerpc.deb IBM S/390 http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_s390.deb http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_s390.deb Sun Sparc http://security.debian.org/pool/updates/main/i/iptables/iptables_1.2.6a-5.0woody2_sparc.deb http://security.debian.org/pool/updates/main/i/iptables/iptables-dev_1.2.6a-5.0woody2_sparc.deb Mandrake Linux Mandrakelinux 9.2 x86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/9.2/RPMS/iptables-1.2.8-2.1.92mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/9.2/RPMS/iptables-ipv6-1.2.8-2.1.92mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/9.2/SRPMS/iptables-1.2.8-2.1.92mdk.src.rpm AMD64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/9.2/RPMS/iptables-1.2.8-2.1.92mdk.amd64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/9.2/RPMS/iptables-ipv6-1.2.8-2.1.92mdk.amd64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/9.2/SRPMS/iptables-1.2.8-2.1.92mdk.src.rpm Mandrakelinux 10.0 x86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.0/RPMS/iptables-1.2.9-5.1.100mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.0/RPMS/iptables-ipv6-1.2.9-5.1.100mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.0/SRPMS/iptables-1.2.9-5.1.100mdk.src.rpm AMD64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/10.0/RPMS/iptables-1.2.9-5.1.100mdk.amd64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/10.0/RPMS/iptables-ipv6-1.2.9-5.1.100mdk.amd64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/amd64/10.0/SRPMS/iptables-1.2.9-5.1.100mdk.src.rpm Mandrakelinux 10.1 x86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.1/RPMS/iptables-1.2.9-7.1.101mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.1/RPMS/iptables-devel-1.2.9-7.1.101mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.1/RPMS/iptables-ipv6-1.2.9-7.1.101mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/10.1/SRPMS/iptables-1.2.9-7.1.101mdk.src.rpm X86_64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.1/RPMS/iptables-1.2.9-7.1.101mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.1/RPMS/iptables-devel-1.2.9-7.1.101mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.1/RPMS/iptables-ipv6-1.2.9-7.1.101mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/10.1/SRPMS/iptables-1.2.9-7.1.101mdk.src.rpm Mandrake Multi Network Firewall 8.2 x86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/mnf8.2/RPMS/iptables-1.2.5-1.1.M82mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/mnf8.2/RPMS/iptables-ipv6-1.2.5-1.1.M82mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/mnf8.2/SRPMS/iptables-1.2.5-1.1.M82mdk.src.rpm Corporate Server 2.1 x86 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/2.1/RPMS/iptables-1.2.6a-1.1.C21mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/2.1/RPMS/iptables-ipv6-1.2.6a-1.1.C21mdk.i586.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/corporate/2.1/SRPMS/iptables-1.2.6a-1.1.C21mdk.src.rpm X86_64 ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/2.1/RPMS/iptables-1.2.6a-1.1.C21mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/2.1/RPMS/iptables-ipv6-1.2.6a-1.1.C21mdk.x86_64.rpm ftp://ftp.ps.pl/mirrors/Mandrakelinux/official/updates/x86_64/corporate/2.1/SRPMS/iptables-1.2.6a-1.1.C21mdk.src.rpm Suse Linux Las actualizaciones pueden descargarse mediante YAST o desde el servidor FTP oficial de Suse Linux. Fedora Fedora 3 http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/SRPMS/iptables-1.2.11-3.1.FC3.src.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/x86_64/iptables-1.2.11-3.1.FC3.x86_64.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/x86_64/iptables-ipv6-1.2.11-3.1.FC3.x86_64.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/x86_64/iptables-devel-1.2.11-3.1.FC3.x86_64.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/x86_64/debug/iptables-debuginfo-1.2.11-3.1.FC3.x86_64.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/i386/iptables-1.2.11-3.1.FC3.i386.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/i386/iptables-ipv6-1.2.11-3.1.FC3.i386.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/i386/iptables-devel-1.2.11-3.1.FC3.i386.rpm http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/i386/debug/iptables-debuginfo-1.2.11-3.1.FC3.i386.rpm
Standar resources
Property	Value
CVE	CAN-2004-0986
BID
Other resources
Debian Security Advisory DSA 580-1 http://lists.debian.org/debian-security-announce/debian-security-announce-2004/msg00189.html Mandrakesoft Security Advisory MDKSA-2004:125 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:125 SUSE Security Summary Report (SUSE-SR:2004:002) http://www.suse.de/de/security/2004_02_sr.html Fedora Update Notification FEDORA-2004-417 http://www.redhat.com/archives/fedora-announce-list/2004-December/msg00004.html

Version history
Version	Comments	Date
1.0	Aviso emitido	2004-11-02
1.1	Aviso emitido por Mandrake (MDKSA-2004:125)	2004-11-05
1.2	Aviso emitido por Suse Linux (SUSE-SR:2004:002)	2004-11-30
1.3	Aviso emitido por Fedora (FEDORA-2004-417)	2004-12-02

Vulnerability Bulletins

Fallo de inicialización en iptables

Vulnerability classification

System information

Description

Solution

Standar resources

Other resources

Version history