[Printing-architecture] Fwd: raw socket Linux kernel panic

Till Kamppeter till.kamppeter at gmail.com
Wed Jun 19 15:10:25 UTC 2019


Only the printers open port 9100 to receive jobs, a computer does never 
open this port for printer sharing. So is this secyrity issue about 
breaking into the printer then?

    Till


On 19/06/2019 16:56, Ira McDonald wrote:
> Hi,
> 
> Of course, we don't encourage people to use Port 9100 (for example)
> for printing, but this raw socket kernel panic looks like a serious issue.
> 
> Cheers,
> - Ira
> 
> 
> ---------- Forwarded message ---------
> From: *Dave New* <dave.new at fcagroup.com <mailto:dave.new at fcagroup.com>>
> Date: Wed, Jun 19, 2019 at 10:46 AM
> Subject: raw socket Linux kernel panic
> To: Ira McDonald <blueroofmusic at gmail.com <mailto:blueroofmusic at gmail.com>>
> 
> 
> Ira,
> 
> Heard on the security now podcast this morning, there is a raw socket 
> Linux kernel panic that goes back about ten years.  I noticed that you 
> are involved with the printing stuff, and I recall that includes raw 
> sockets, which might be likely exposed to the Internet (purposefully or 
> accidentally).
> 
> What I understand is that the issue is in the kernel TCP stack, so there 
> may be little that can be done from the printer driver level, except 
> maybe close off the raw socket access until the kernels can be patched.
> 
> Steve Gibson expects that by next week, an attack in the wild against 
> unpatched kernels will be featured front-and-center for his podcast.
> 
> Thanks,
> 
> --  DaveN
> 
> 
> Dave New
> 
> Advanced Senior Engineer
> 
> E/E Wireless & Security
> 
> 
> FCA US LLC
> 
> CIMS 484-10-01
> 
> 800 Chrysler Dr, Auburn Hills, MI USA 48326-2757
> 
> USA
> 
> 
> Telephone: +1 (248) 576 1591
> 
> Mobile: +1 (248) 705 8701
> 
> FAX: +1 (248) 576 8398
> 
> Email:dave.new at fcagroup.com <mailto:dave.new at fcagroup.com>
> 
> 



More information about the Printing-architecture mailing list