[oss-security] CVE Request : IPv6 Hop limit lowering via RA messages
Jim Thompson
jim at netgate.com
Fri Apr 3 04:06:50 UTC 2015
have you considered that there might not be a relevant patch because FreeBSD’s implementation isn’t affected?
Jim
> On Apr 2, 2015, at 9:15 PM, Eitan Adler <lists at eitanadler.com> wrote:
>
> + FreeBSD lists since I haven't seen any relevant patches (although I
> might have missed them).
>
> ---------- Forwarded message ----------
> From: D.S. Ljungmark <ljungmark at modio.se>
> Date: 2 April 2015 at 10:19
> Subject: [oss-security] CVE Request : IPv6 Hop limit lowering via RA messages
> To: oss-security at lists.openwall.com
>
>
> An unprivileged user on a local network can use IPv6 Neighbour
> Discovery ICMP to broadcast a non-route with a low hop limit, this
> causing machines to lower the hop limit on existing IPv6 routes.
>
> Linux Patch: http://www.spinics.net/lists/netdev/msg322361.html
> Redhat bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1203712
>
> Projects impacted: Linux kernel, NetworkManager, FreeBSD Kernel
>
>
> Regards,
> D.S. Ljungmark
>
>
> --
> Eitan Adler
> _______________________________________________
> freebsd-net at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-net
> To unsubscribe, send any mail to "freebsd-net-unsubscribe at freebsd.org"
More information about the freebsd-net
mailing list