Subject: Re: Ethernet frame padding bug - CERT VU #412115 (xs4)
To: Rogier Krieger <rogier@virgiel.nl>
From: Manuel Bouyer <bouyer@antioche.eu.org>
List: tech-security
Date: 01/13/2003 22:55:21
On Mon, Jan 13, 2003 at 04:17:44PM +0100, Rogier Krieger wrote:
>
> Can anyone confirm NetBSD is not vulnerable? The @stake report seems
> to test only up to 0x0020, but linux already includes HTTP-snippets
> before that point. To quote from the @stake report [2], linux may do:
Some drivers in NetBSD are vulnerable, with different degree of vulnerability.
This is being worked on.
--
Manuel Bouyer <bouyer@antioche.eu.org>
NetBSD: 23 ans d'experience feront toujours la difference
--