Fwd: [oss-security] CVE Request : IPv6 Hop limit lowering via RA messages
Eitan Adler
lists at eitanadler.com
Fri Apr 3 02:16:18 UTC 2015
+ FreeBSD lists since I haven't seen any relevant patches (although I
might have missed them).
---------- Forwarded message ----------
From: D.S. Ljungmark <ljungmark at modio.se>
Date: 2 April 2015 at 10:19
Subject: [oss-security] CVE Request : IPv6 Hop limit lowering via RA messages
To: oss-security at lists.openwall.com
An unprivileged user on a local network can use IPv6 Neighbour
Discovery ICMP to broadcast a non-route with a low hop limit, this
causing machines to lower the hop limit on existing IPv6 routes.
Linux Patch: http://www.spinics.net/lists/netdev/msg322361.html
Redhat bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1203712
Projects impacted: Linux kernel, NetworkManager, FreeBSD Kernel
Regards,
D.S. Ljungmark
--
Eitan Adler
More information about the freebsd-net
mailing list