[pf4freebsd] Possible remote DoS (panic) with scrub rules!!!
Max Laier
max at love2party.net
Wed Sep 15 20:47:51 PDT 2004
Hello,
just got a HUB from Daniel regarding a possible remote DoS in pf_norm.c This
might not be a problem if you do not use "scrub"-Rules.
This regards all versions of pf4freebsd prior 1.63 (which was just released)
and port prior 1.0_7 (just commited by "edwin").
Version 1.63 (for tarball users) can be found at:
http://pf4freebsd.love2party.net/pf_freebsd_1.63.tar.gz
MD5 (pf_freebsd_1.63.tar.gz) = d36bef7f8023c891572148c0d3930410
the patch for the port is commited.
Please update as soon as possible.
Additional information can be found at:
http://www.openbsd.org/cgi-bin/cvsweb/src/sys/net/pf_norm.c (v1.75)
Regards,
Max
More information about the freebsd-pf
mailing list