Date: Wed, 24 Mar 1999 14:58:15 -0800 (PST) From: Archie Cobbs <archie@whistle.com> To: FreeBSD-gnats-submit@freebsd.org Subject: kern/10778: "ipforward_rt" is not cleared when routing table changes Message-ID: <199903242258.OAA94806@bubba.whistle.com>
next in thread | raw e-mail | index | archive | help
>Number: 10778 >Category: kern >Synopsis: "ipforward_rt" is not cleared when routing table changes >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Wed Mar 24 15:00:00 PST 1999 >Closed-Date: >Last-Modified: >Originator: Archie Cobbs >Release: FreeBSD 4.x-current, 3.1 >Organization: Whistle Communications, Inc. >Environment: FreeBSD 3.1 and 4.x-current >Description: The variable "ipforward_rt" in ip_input.c holds a cached route. This cached route should be cleared whenever there is a change to the routing table, but this is not being done. The affect is that a FreeBSD router could end up mis-routing packets for an arbitrarily long time in the future. In case the new route being added is for a secure VPN, then the result is that private data could suddenly start being sent out to the world. >How-To-Repeat: >Fix: Whenever the IP routing table changes, clear the cached route if any. >Release-Note: >Audit-Trail: >Unformatted: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199903242258.OAA94806>