Re: FreeBSD Security Advisory FreeBSD-SA-06:18.ppp

Am 23.08.2006 um 22:18 schrieb FreeBSD Security Advisories:

III. Impact

An attacker able to send LCP packets, including the remote end of a ppp(4)
connection, can cause the FreeBSD kernel to panic. Such an attacker may
also be able to obtain sensitive information or gain elevated privileges.
The following list contains the revision numbers of each file that was
corrected in FreeBSD.

Branch Revision
- ---------------------------------------------------------------------- ---

ppp(4) or sppp(4)? Looking at the patch, it seems to be sppp(4), which is (completely?) seperate from ppp(4), AFAIK.

Also, ppp(8), Brian Somers userland PPP implementation, is not affected; a useful bit of information for people who are not as familiar with the multitude of PPP implementations in FreeBSD.


Stefan Bethke <stb@xxxxxxxxxx> Fon +49 170 346 0140

freebsd-security@xxxxxxxxxxx mailing list
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"

Relevant Pages

  • IPSec tcp session stalling
    ... A remote FreeBSD server: S ... LR and RR are connected via an IPSec tunnel. ... 1400 bytes or so from W to S or vice versa the connection stalls and I ...
  • RE: [Freebsd-security] Re: Possible compromise ?
    ... I was not able to install and setup FreeBSD by ... > some connects from remote machines to ttyp0 and ttyp1. ... > me to retrieve connection dates from that file. ...
  • nxserver/freenx connection problem
    ... My goal is it to connect from Windows 7 to freebsd remotely using nxserver. ... Connected to remote version 2.1.0 with local version 3.5.0. ... Connection with remote proxy completed. ...
  • Re: Running FreeBSD for my personal website: collocation, cloud, etc.
    ... cheaply) get up and running with a "publicly accessible" FreeBSD ... The server will be under essentially no load. ... from a remote place, you can move to option 2. ... and can't be fix via a remote connection. ...
  • Re: freebsd-net Digest, Vol 181, Issue 9
    ... FreeBSD 6.1 + ath0 + NAT ... connection to the Internet, and a Netgear WG311T wireless Ethernet card ... ath0: flags=8843 mtu 1500 ...