From owner-freebsd-security Mon Sep 18 10: 2:48 2000 Delivered-To: freebsd-security@freebsd.org Received: from field.videotron.net (field.videotron.net [205.151.222.108]) by hub.freebsd.org (Postfix) with ESMTP id B457037B424 for ; Mon, 18 Sep 2000 10:02:46 -0700 (PDT) Received: from modemcable136.203-201-24.mtl.mc.videotron.ca ([24.201.203.136]) by field.videotron.net (Sun Internet Mail Server sims.3.5.1999.12.14.10.29.p8) with ESMTP id <0G13006H3DYZ0T@field.videotron.net> for security@FreeBSD.ORG; Mon, 18 Sep 2000 13:01:47 -0400 (EDT) Date: Mon, 18 Sep 2000 13:05:25 -0400 (EDT) From: Bosko Milekic Subject: Re: Panic when receiving packets with invalid versions In-reply-to: <20000918115643.A470@torment.secfreak.com> X-Sender: bmilekic@jehovah.technokratis.com To: Fred Souza Cc: security@FreeBSD.ORG Message-id: MIME-version: 1.0 Content-type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 18 Sep 2000, Fred Souza wrote: > It seems, the system cannot handle a certain ammount of packets built with > invalid IP version numbers, and will reboot after a short period of time. [...] > Then.. > > Fatal trap 12: page fault while in kernel mode > fault virtual address = 0x0 > fault code = supervisor read, page not present > instruction pointer = 0x8:0xc0190b43 > stack pointer = 0x10:0xc644acc0 > frame pointer = 0x10:0xc644acec > code segment = base 0x0, limit 0xfffff, type 0x1b > = DPL 0, pres 1, def32 1, gran 1 > processor eflags = interrupt enabled, resume, IOPL = 0 > current process = 238 (isic) > interrupt mask = > trap number = 12 > panic: page fault Can you please send a complete traceback, as well as other (more useful) debugging information? -- See the Handbook for more information. Looks like a NULL pointer dereference. Bosko Milekic bmilekic@technokratis.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message