mbuf vulnerability

Mike Silbersack silby at silby.com
Sun Feb 29 17:03:44 PST 2004

On Sun, 29 Feb 2004, Mike Tancsa wrote:

> In
> http://docs.freebsd.org/cgi/mid.cgi?200402260743.IAA18903
> it seems RELENG_4 is vulnerable.  Is there any work around to a system that
> has to have ports open ?

There is no way to fix this issue without kernel modifications.  A fix has
been committed to -current, someone on the security team can probably
provide information on when the MFC will be appearing.

On the plus side, you have to establish a TCP connection to make the DoS
happen, so people abusing it can be easily traced.

Mike "Silby" Silbersack

More information about the freebsd-security mailing list