i386/66311: TCPDUMP ISAKMP payload handling denial-of-service
Vulnerability
Simon L. Nielsen
simon at FreeBSD.org
Thu May 6 05:42:01 PDT 2004
On 2004.05.06 07:05:46 -0500, Jacques A. Vidrine wrote:
> On Thu, May 06, 2004 at 02:32:03AM -0700, Simon L. Nielsen wrote:
> > Synopsis: TCPDUMP ISAKMP payload handling denial-of-service Vulnerability
> >
> > Responsible-Changed-From-To: freebsd-i386->security
> > Responsible-Changed-By: simon
> > Responsible-Changed-When: Thu May 6 02:30:15 PDT 2004
> > Responsible-Changed-Why:
> > Reassign to the Security Team for evaluation of the severity of this
> > problem.
> >
> > http://www.freebsd.org/cgi/query-pr.cgi?pr=66311
>
> [This PR seems to be misfiled as `i386' ?]
Yes, quite a lot of PR's gets misfiled as i386, I just forgot to change
it before reassigning the PR.
> This is the issue documented here:
> http://vuxml.freebsd.org/f8551668-de09-4d7b-9720-f1360929df07.html
Ah, I didn't think about looking in vuxml.
> It is already repaired in -CURRENT. The security team does not have any
> special action planned due to the extremely limited impact of the issue.
OK, seems sensible.
> The tcpdump maintainer (fenner@) should probably be contacted about an
> MFC.
How about just reassigning this PR to fenner and let him decide?
--
Simon L. Nielsen
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-i386/attachments/20040506/bf7bb142/attachment.bin
More information about the freebsd-i386
mailing list