> Do a: > iptables -V > > I'm guessing you are running an older version that is not patched for > this problem (1.2.6a or prior). Here is the original advisory: > http://www.linuxsecurity.com/advisories/other_advisory-2063.html > That's not enough: you need a patched (or later) kernel as well as the bug actually existed in the netfilter module. I can't remember OTOMH which kernel release this went into, although it was much later than the mentioned version because the kernel team rejected the original fix (for some good reasons). I know 2.4.23+ don't have this problem.
