The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of iputils: denial of service of ping

Synthesis of the vulnerability 

A server can send a malicious ICMP reply, in order to generate an infinite loop in the ping tool.
Impacted software: Debian, Fedora, Mandriva Linux, Unix (platform) ~ not comprehensive.
Severity of this computer vulnerability: 1/4.
Creation date: 23/07/2010.
Références of this announce: BID-41911, CVE-2010-2529, DSA-2645-1, FEDORA-2010-12252, FEDORA-2010-12273, MDVSA-2010:138, VIGILANCE-VUL-9784.

Description of the vulnerability 

The iputils suite contains network tools, such as ping and traceroute6.

The ping tool sends an IPv4+ICMP_Echo_Request to a remote computer, which answers with an IPv4+ICMP_Echo_Reply packet.

If the remote computer sends an answer containing an IPv4 Timestamp option, the pr_options() function of ping.c decodes its. However, this function is invalid, and an infinite loop occurs.

A server can therefore send a malicious ICMP reply, in order to generate an infinite loop in the ping tool.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This weakness impacts software or systems such as Debian, Fedora, Mandriva Linux, Unix (platform) ~ not comprehensive.

Our Vigil@nce team determined that the severity of this vulnerability announce is low.

The trust level is of type confirmed by the editor, with an origin of internet server.

A proof of concept or an attack tool is available, so your teams have to process this alert. An attacker with a technician ability can exploit this threat bulletin.

Solutions for this threat 

iputils: patch.
A patch is available in information sources.

Debian: new inetutils packages.
New packages are available:
  inetutils 2:1.6-3.1+squeeze2

Fedora: new iputils packages.
New packages are available:
  iputils-20071127-12.fc12
  iputils-20071127-12.fc13

Mandriva: new iputils packages.
New packages are available:
  Mandriva Linux 2008.0: iputils-20070202-3.1mdv2008.0
  Mandriva Linux 2009.0: iputils-20071127-5.1mdv2009.0
  Mandriva Linux 2009.1: iputils-20071127-6.1mdv2009.1
  Mandriva Linux 2010.0: iputils-20071127-7.1mdv2010.0
  Mandriva Linux 2010.1: iputils-20100214-1.1mdv2010.1
  Corporate 4.0: iputils-20020927-5.1.20060mlcs4
  Mandriva Enterprise Server 5: iputils-20071127-5.1mdvmes5.1
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides an applications vulnerabilities watch. The Vigil@nce vulnerability database contains several thousand vulnerabilities.