rPath Security Advisory: 2006-0110-1 Published: 2006-06-23 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote Deterministic Denial of Service Updated Versions: kernel=/conary.rpath.com@rpl:devel//1/2.6.16.22-0.1-1 References: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2445 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2448 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3085 http://issues.rpath.com/browse/RPL-457 Description: In previous kernel versions, systems that use the SCTP protocol are vulnerable to remote denial of service attacks including remotely-triggered kernel crashes, and all systems are vulnerable to local denial of service including locally-triggered kernel hangs. This update requires a reboot to implement the fixes.