What about FreeBSD? - KAME Project "ipcomp6_input()" Denial of Service
- From: Mohacsi Janos <mohacsi@xxxxxxx>
- Date: Wed, 6 Feb 2008 21:54:48 +0100 (CET)
TITLE:
KAME Project "ipcomp6_input()" Denial of Service
CRITICAL:
Moderately critical
IMPACT:
DoS
WHERE:
From remote
DESCRIPTION:
A vulnerability has been reported in the KAME Project, which can be
exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an error within the
"ipcomp6_input()" function in kame/sys/netinet6/ipcomp_input.c when
processing IPv6 packets with an IPComp header. This can be exploited
to crash a vulnerable system by sending a specially crafted IPv6
packet.
SOLUTION:
Fixed in the CVS repository.
http://www.kame.net/dev/cvsweb2.cgi/kame/kame/sys/netinet6/ipcomp_input.c.diff?r1=1.36;r2=1.37
PROVIDED AND/OR DISCOVERED BY:
US-CERT credits Shoichi Sakane.
NetBSD credits the Coverity Prevent analysis tool.
ORIGINAL ADVISORY:
US-CERT VU#110947:
http://www.kb.cert.org/vuls/id/110947
_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: What about FreeBSD? - KAME Project "ipcomp6_input()" Denial of Service
- From: Dag-Erling Smørgrav
- Re: What about FreeBSD? - KAME Project "ipcomp6_input()" Denial of Service
- Prev by Date: Re: LOCAL_CREDS and unix domain sockets
- Next by Date: Re: What about FreeBSD? - KAME Project "ipcomp6_input()" Denial of Service
- Previous by thread: failed binary version 6.2-6.3 update using freebsd-update.sh
- Next by thread: Re: What about FreeBSD? - KAME Project "ipcomp6_input()" Denial of Service
- Index(es):
