[Bug 771] New: nf_conntrack_proto_tcp BUG??
bugzilla-daemon at bugzilla.netfilter.org
bugzilla-daemon at bugzilla.netfilter.org
Thu Feb 16 08:54:59 CET 2012
http://bugzilla.netfilter.org/show_bug.cgi?id=771
Summary: nf_conntrack_proto_tcp BUG??
Product: netfilter/iptables
Version: linux-2.6.x
Platform: All
OS/Version: All
Status: NEW
Severity: enhancement
Priority: P5
Component: nf_conntrack
AssignedTo: netfilter-buglog at lists.netfilter.org
ReportedBy: kendo999 at sohu.com
Estimated Hours: 0.0
Sometimes occur on my system (2.6.38.8):
klogd: [147339.919840] kernel BUG at net / netfilter /
nf_conntrack_proto_tcp.c: 447!
klogd: [2629147.402413] kernel BUG at net / netfilter /
nf_conntrack_proto_tcp.c: 447!
klogd: [1072212.887368] kernel BUG at net / netfilter /
nf_conntrack_proto_tcp.c: 392
line 392:
ptr = skb_header_pointer (skb, dataoff + sizeof (struct tcphdr),
length, buff);
BUG_ON (ptr == NULL);
line 447:
ptr = skb_header_pointer (skb, dataoff + sizeof (struct tcphdr),
length, buff);
BUG_ON (ptr == NULL);
Whether this is because Netfilter does not correct for tcp length of the
security checks that it can not properly deal with attack packets or bad
packets?
--
Configure bugmail: http://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
You are watching all bug changes.
More information about the netfilter-buglog
mailing list