Date: Sun, 7 Jun 2015 09:18:57 -0400 From: Jason Unovitch <jason.unovitch@gmail.com> To: "Daniel DP. Plominski" <Daniel@plominski.eu> Cc: freebsd-net@freebsd.org, freebsd-security@freebsd.org Subject: Re: IPsec-Tools 0-Day Denial of Service Message-ID: <CABW2x9rrn74oHTBzK5mN1Azc6=AePsRuDAbUm416i20w80wfBg@mail.gmail.com> In-Reply-To: <55734E7F.2070308@Plominski.eu> References: <55734E7F.2070308@Plominski.eu>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, Jun 6, 2015 at 3:48 PM, Daniel DP. Plominski <Daniel@plominski.eu> wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA512 > > https://www.altsci.com/ipsec/ipsec-tools-sa.html > > security/ipsec-tools build with gssapi: CRASHED > > (FreeBSD 10.1 + ipsec-tools 0.8.2_1) > > best regards > Daniel > -----BEGIN PGP SIGNATURE----- See https://bugs.freebsd.org/200334. The issue was documented as being fixed here https://svnweb.freebsd.org/ports?view=revision&revision=386793 and documented in VuXML here http://www.vuxml.org/freebsd/35431f79-fe3e-11e4-ba63-000c292ee6b8.html. It seems highly unlikely someone was waiting for you to install ipsec-tools and start sending packets to cause a DoS. Are you sure this isn't just a run time issue? Perhaps with the off by default GSSAPI option? The correct avenue to report that would be via https://bugs.freebsd.org/bugzilla/ vice the mailing list. Jason
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CABW2x9rrn74oHTBzK5mN1Azc6=AePsRuDAbUm416i20w80wfBg>