[prev in list] [next in list] [prev in thread] [next in thread]
List: freebsd-security
Subject: Re: IPsec-Tools 0-Day Denial of Service
From: Jason Unovitch <jason.unovitch () gmail ! com>
Date: 2015-06-07 13:18:57
Message-ID: CABW2x9rrn74oHTBzK5mN1Azc6=AePsRuDAbUm416i20w80wfBg () mail ! gmail ! com
[Download RAW message or body]
On Sat, Jun 6, 2015 at 3:48 PM, Daniel DP. Plominski
<Daniel@plominski.eu> wrote:
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
>
> https://www.altsci.com/ipsec/ipsec-tools-sa.html
>
> security/ipsec-tools build with gssapi: CRASHED
>
> (FreeBSD 10.1 + ipsec-tools 0.8.2_1)
>
> best regards
> Daniel
> -----BEGIN PGP SIGNATURE-----
See https://bugs.freebsd.org/200334.
The issue was documented as being fixed here
https://svnweb.freebsd.org/ports?view=revision&revision=386793 and
documented in VuXML here
http://www.vuxml.org/freebsd/35431f79-fe3e-11e4-ba63-000c292ee6b8.html.
It seems highly unlikely someone was waiting for you to install
ipsec-tools and start sending packets to cause a DoS. Are you sure
this isn't just a run time issue? Perhaps with the off by default
GSSAPI option? The correct avenue to report that would be via
https://bugs.freebsd.org/bugzilla/ vice the mailing list.
Jason
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic