mbuf vulnerability
Mike Silbersack
silby at silby.com
Sun Feb 29 17:03:44 PST 2004
On Sun, 29 Feb 2004, Mike Tancsa wrote:
> In
> http://docs.freebsd.org/cgi/mid.cgi?200402260743.IAA18903
>
> it seems RELENG_4 is vulnerable. Is there any work around to a system that
> has to have ports open ?
There is no way to fix this issue without kernel modifications. A fix has
been committed to -current, someone on the security team can probably
provide information on when the MFC will be appearing.
On the plus side, you have to establish a TCP connection to make the DoS
happen, so people abusing it can be easily traced.
Mike "Silby" Silbersack
More information about the freebsd-security
mailing list