CVE-2011-1024 attack via nested ipcomp when IPSEC is enabled

To: tech-net%NetBSD.org@localhost
Subject: CVE-2011-1024 attack via nested ipcomp when IPSEC is enabled
From: "S.P.Zeidler" <spz%NetBSD.org@localhost>
Date: Fri, 1 Apr 2011 08:34:25 +0000

Hi,

see CVE-2011-1024 or http://seclists.org/fulldisclosure/2011/Apr/0

I'm pretty sure there are better ways to fix this than
http://mail-index.netbsd.org/source-changes/2011/04/01/msg020490.html
http://mail-index.netbsd.org/source-changes/2011/04/01/msg020491.html

Any help appreciated.

regards,
        spz

Prev by Date: Re: pptp, take 3
Next by Date: CVE-2011-1547 not CVE-2011-1024
Previous by Thread: pptp, take 3
Next by Thread: CVE-2011-1547 not CVE-2011-1024
Indexes:

Home | Main Index | Thread Index | Old Index