-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
--------------------------------------------------------------------------
Turbolinux Security Advisory TLSA-2005-10
http://www.turbolinux.co.jp/security/
security-team@turbolinux.co.jp
--------------------------------------------------------------------------
Original released date: 26 Jan 2005
Last revised: 12 Apr 2005
Package: iptables
Summary: The iptables module is not loaded by default
More information:
The iptables module is part of a framework within the Linux kernel enabling
packet filtering and network addresss and port translation.
The iptables module allows you to set up firewalls, IP masquerading, etc.
Under certain conditions, at system startup, the iptables module does
not properly load other required kernel modules.
Impact:
This vulnerability may cause some firewall rules to not be enabled.
Affected Products:
- Turbolinux Appliance Server 1.0 Hosting Edition
- Turbolinux Appliance Server 1.0 Workgroup Edition
- Turbolinux 10 Server
- Turbolinux Home
- Turbolinux 10 F...
- Turbolinux 10 Desktop
- Turbolinux 8 Server
- Turbolinux 8 Workstation
- Turbolinux 7 Server
- Turbolinux 7 Workstation
Solution:
Please use the turbopkg (zabom) tool to apply the update.
---------------------------------------------
[Turbolinux 10 Server, Turbolinux 10 Desktop, Turbolinux 10 F...,
Turbolinux Home]
# turbopkg
or
# zabom -u iptables iptables-ipv6
[other]
# turbopkg
or
# zabom update iptables iptables-ipv6
---------------------------------------------
<Turbolinux Appliance Server 1.0 Hosting Edition>
Source Packages
Size: MD5
iptables-1.2.5-9.src.rpm
250865 11bb3cc297273e288302087bb12a5424
Binary Packages
Size: MD5
iptables-1.2.5-9.i586.rpm
113013 6452399c3e33a69184ed4b90e47737e1
<Turbolinux Appliance Server 1.0 Workgroup Edition>
Source Packages
Size: MD5
iptables-1.2.5-9.src.rpm
250865 cd08b42c950f17aaad90942ca7a7aa5a
Binary Packages
Size: MD5
iptables-1.2.5-9.i586.rpm
113169 63127467b67dd318565f8aa2af12077b
<Turbolinux 10 Server>
Source Packages
Size : MD5
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/updates/SRPMS/iptables-1.2.11-3.src.rpm
171392 f8d209c404a0c80a1cb39769b0dd0752
Binary Packages
Size : MD5
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/updates/RPMS/iptables-1.2.11-3.i586.rpm
128949 18665c1391bcacc008b42f878ba8bf66
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/updates/RPMS/iptables-ipv6-1.2.11-3.i586.rpm
86570 31a0bee5bdf37f815415cb4497ffccc2
<Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux Home>
Source Packages
Size : MD5
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/updates/SRPMS/iptables-1.2.5-6.src.rpm
249503 db14fb59045bf441b3b29ce441ecafb4
Binary Packages
Size : MD5
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/updates/RPMS/iptables-1.2.5-6.i586.rpm
112221 cde32d0ebb914aa24b5b701138944166
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/updates/RPMS/iptables-ipv6-1.2.5-6.i586.rpm
43308 769ab23520744ecec5c18eb46a18713f
<Turbolinux 8 Server>
Source Packages
Size : MD5
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/SRPMS/iptables-1.2.5-6.src.rpm
249503 2793cddd92d0a4d46fa16044a3b1bbd5
Binary Packages
Size : MD5
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/RPMS/iptables-1.2.5-6.i586.rpm
112368 97b59758bad5e851add2eb910e5f1509
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/RPMS/iptables-ipv6-1.2.5-6.i586.rpm
43544 29cbe3100477c7794167ac5159a92ee1
<Turbolinux 8 Workstation>
Source Packages
Size : MD5
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/8/updates/SRPMS/iptables-1.2.5-6.src.rpm
249503 662423ea544c38fbb0b1673ce4f26191
Binary Packages
Size : MD5
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/8/updates/RPMS/iptables-1.2.5-6.i586.rpm
112279 3f0ed78324c4bfd83f57058485d55f54
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/8/updates/RPMS/iptables-ipv6-1.2.5-6.i586.rpm
43528 87ddac3e83341e365a23df157f149805
<Turbolinux 7 Server>
Source Packages
Size : MD5
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/7/updates/SRPMS/iptables-1.2.5-6.src.rpm
249503 90eea0042084c29924d3fe3a699bf4be
Binary Packages
Size : MD5
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/7/updates/RPMS/iptables-1.2.5-6.i586.rpm
108811 2c12ce067ffbad17752497d1995bbd0b
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/7/updates/RPMS/iptables-ipv6-1.2.5-6.i586.rpm
42332 732477a482bf315c41a88a7b03554b56
<Turbolinux 7 Workstation>
Source Packages
Size : MD5
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/7/updates/SRPMS/iptables-1.2.5-6.src.rpm
249503 672e50ae6dd331223ad640dd621e76a8
Binary Packages
Size : MD5
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/7/updates/RPMS/iptables-1.2.5-6.i586.rpm
108845 3e9364b62881492e087d932a355a05dd
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/7/updates/RPMS/iptables-ipv6-1.2.5-6.i586.rpm
42300 3a9eac9ded16f9076d70cbec2b149880
References:
CVE
[
CAN-2004-0986]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=
CAN-2004-0986
--------------------------------------------------------------------------
Revision History
26 Jan 2005 Initial release
12 Apr 2005 Added Turbolinux Appliance Server 1.0 Hosting Edition,
Turbolinux Appliance Server 1.0 Workgroup Edition
--------------------------------------------------------------------------
Copyright(C) 2005 Turbolinux, Inc. All rights reserved.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.7 (GNU/Linux)
iD8DBQFCW0wEK0LzjOqIJMwRAvVSAJ9zq1n+aBTZdWi6UtrUYZ5Qx3ls1QCgjhYR
eosJlnPufSJuDgbqJfI1e90=
=Rzi+
-----END PGP SIGNATURE-----