Re: FreeBSD Security Advisory FreeBSD-SA-06:18.ppp

看板FB_security作者時間19年前 (2006/08/25 19:01), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串2/3 (看更多)
Am 23.08.2006 um 22:18 schrieb FreeBSD Security Advisories: > III. Impact > > An attacker able to send LCP packets, including the remote end of a > ppp(4) > connection, can cause the FreeBSD kernel to panic. Such an > attacker may > also be able to obtain sensitive information or gain elevated > privileges. .... > The following list contains the revision numbers of each file that was > corrected in FreeBSD. > > Branch > Revision > Path > - > ---------------------------------------------------------------------- > --- > RELENG_4 > src/sys/net/if_spppsubr.c > 1.59.2.15 .... ppp(4) or sppp(4)? Looking at the patch, it seems to be sppp(4), which is (completely?) seperate from ppp(4), AFAIK. Also, ppp(8), Brian Somers userland PPP implementation, is not affected; a useful bit of information for people who are not as familiar with the multitude of PPP implementations in FreeBSD. Stefan -- Stefan Bethke <stb@lassitu.de> Fon +49 170 346 0140 _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
更多 stb. 的文章
文章代碼(AID): #14xjXs00 (FB_security)
更多 stb. 的文章
文章代碼(AID): #14xjXs00 (FB_security)