Re: FreeBSD Security Advisory FreeBSD-SA-06:18.ppp



Am 23.08.2006 um 22:18 schrieb FreeBSD Security Advisories:

III. Impact

An attacker able to send LCP packets, including the remote end of a ppp(4)
connection, can cause the FreeBSD kernel to panic. Such an attacker may
also be able to obtain sensitive information or gain elevated privileges.
...
The following list contains the revision numbers of each file that was
corrected in FreeBSD.

Branch Revision
Path
- ---------------------------------------------------------------------- ---
RELENG_4
src/sys/net/if_spppsubr.c 1.59.2.15
...

ppp(4) or sppp(4)? Looking at the patch, it seems to be sppp(4), which is (completely?) seperate from ppp(4), AFAIK.

Also, ppp(8), Brian Somers userland PPP implementation, is not affected; a useful bit of information for people who are not as familiar with the multitude of PPP implementations in FreeBSD.


Stefan

--
Stefan Bethke <stb@xxxxxxxxxx> Fon +49 170 346 0140


_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"



Relevant Pages

  • IPSec tcp session stalling
    ... A remote FreeBSD server: S ... LR and RR are connected via an IPSec tunnel. ... 1400 bytes or so from W to S or vice versa the connection stalls and I ...
    (freebsd-questions)
  • RE: [Freebsd-security] Re: Possible compromise ?
    ... I was not able to install and setup FreeBSD by ... > some connects from remote machines to ttyp0 and ttyp1. ... > me to retrieve connection dates from that file. ...
    (FreeBSD-Security)
  • nxserver/freenx connection problem
    ... My goal is it to connect from Windows 7 to freebsd remotely using nxserver. ... Connected to remote version 2.1.0 with local version 3.5.0. ... Connection with remote proxy completed. ...
    (freebsd-net)
  • Re: Running FreeBSD for my personal website: collocation, cloud, etc.
    ... cheaply) get up and running with a "publicly accessible" FreeBSD ... The server will be under essentially no load. ... from a remote place, you can move to option 2. ... and can't be fix via a remote connection. ...
    (freebsd-questions)
  • Re: Sharing Internet access with a XP box.
    ... > connects to the Internet via a dial-up ISDN connection. ... > run a telnet client on the XP machine and connect to it from the BSD ... supported on FreeBSD and you have to jump through a couple of hoops to ... or, more generically, a server. ...
    (freebsd-newbies)