Linux 2.1.* Security Hole

lilo wrote in to tell us about another nasty hole in the devel series of kernels. He writes " Ultima (Marc Santoro) at irc.linpeople.org has discovered a security hole in Linux 2.1.x which is fairly novel. It has to do with IP fragment expirations, and does not affect production kernels. He's made the patch available and it's on the LinPeople security page. He'll be providing the exploit in a couple of days and it will be posted in the same place."