OSVDB ID: 22732 Title: Multiple BSD pf Crafted IP Fragment Ruleset DoS |
Info |
|
|
Dates |
||||
|
|
Description |
Packet Filter (PF) contains a flaw that may allow a remote denial of service. The issue is triggered when a logic bug in the IP fragment cache may result in a packet fragment being inserted twice, violating a kernel invariant. This will result in loss of availability for the platform. |
Classification |
Location:
Remote / Network Access
Attack Type: Denial of Service Impact: Loss of Availability Disclosure: OSVDB Verified |
Solution |
Upgrade to FreeBSD version 5-STABLE or 6-STABLE, or to the RELENG_6_0, RELENG_5_4, or RELENG_5_3 security branch dated after the correction date, as it has been reported to fix this vulnerability. In addition, FreeBSD has released a patch to address this vulnerability. OpenBSD has released a patch to address this vulnerability. It is also possible to correct the flaw by implementing the following workaround: Do not use 'scrub fragment crop' or 'scrub fragment drop-ovl' rules on systems running pf. |
Products |
|
References |
|
Credit |
|
openbsd.org - OpenBSD