From owner-freebsd-security@freebsd.org Wed Aug 15 16:41:18 2018 Return-Path: Delivered-To: freebsd-security@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 929DE106703E for ; Wed, 15 Aug 2018 16:41:18 +0000 (UTC) (envelope-from terrence@darkness-reigns.com) Received: from mail.darkness-reigns.net (mail.darkness-reigns.net [37.97.239.36]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client CN "*.darkness-reigns.net", Issuer "SSL.com DV CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id BEED595B11 for ; Wed, 15 Aug 2018 16:41:17 +0000 (UTC) (envelope-from terrence@darkness-reigns.com) X-Abuse-Info: user was authenticated, abuse reports to abuse@darkness-reigns.net X-CGPDR-AntiVirus-Kaspersky: Scanned and found clean X-CGPDR-AntiVirus-McAfee: Scanned and found clean X-CGPDR-AntiVirus-Sophos: Scanned and found clean X-CGPDR-AntiVirus-ClamAV: Scanned and found clean DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=darkness-reigns.com; s=mail; bh=4Qn+ji7ZtVCgsS1CNllOqk+pWYmmDTs8Wb6EQPtHR/Y=; h=Content-Language:Content-Transfer-Encoding:Content-Type:MIME-Version: Message-ID:Date:Subject:In-Reply-To:References:To:From; b=pSYgbHh+Q4rN+NPGUyf 0dxnaQyhviI/QwlxLPIcj8muG1tXZuzg+FzVz9k63ZQLklR5prKA9ZGSg0sOKxoICzkSac89ErIDI 4q3rxzdP/cRUKeJPF/6v3RNBvCmyNqeW/k/vCKdJalnVb0yntAHOONjB/HxU/aQGT6MQ6k0Zq3lZs U327B/ElX790hwJoQgWO2vNIwgiM+h0CsaMZO/U7r/Lcnxcz+NqBNMI7jr9WXJ+tmDpmZHiL2bs7b soj/ZGwwJTFYPF/eCRQJDTgNZBMFsYwSzrcV48bkFM5/4Hwe6nyvw1FW9k6K3HjpRPYipOewaBwXd 7dEzWpGW+nemBVeNOcMf5cHR29YQractQS1HdAFlsEwNEJ9RGL4BNGNnKZaarQaSKugR2Xfu5xooJ uiornPNOxi9PdqrOJcq/8ADFzfrl3T6l1Lg4JQ8iSxBLul7LGqhVJjknOYWfr07OqkDMVK1z7B3qf AVtOT5gqhDoYhOBknXBiopzvNZyoXGXOH5Ma47Ak3IXyLbcGA7xykykI0PBhr6CGbwhs7MOWhQ8Du F3vdM7jz5Wd5rOs0UTfK/i7yqxMFG0+2bxVi+qQ9cFhjHJP66h9W00dfRxkl9ytYY2Us3VFDdvrqt CdGXKFxgbin2y5Eyu1Vlv5ZXXBNc35PeFfjEsjHeWAH0bv7Q= Received: from internal.domain; Wed, 15 Aug 2018 18:40:56 +0200 From: "Terrence Koeman" To: References: <20180815054732.9D8C61C2C8@freefall.freebsd.org> <306fd368-1093-ace2-7075-a9c6d2bf6860@shurik.kiev.ua> In-Reply-To: <306fd368-1093-ace2-7075-a9c6d2bf6860@shurik.kiev.ua> Subject: RE: FreeBSD Security Advisory FreeBSD-SA-18:08.tcp Date: Wed, 15 Aug 2018 18:41:12 +0200 Message-ID: <080501d434b6$c7a9c030$56fd4090$@darkness-reigns.com> MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Outlook 16.0 Thread-Index: AQIkCOWCgCBSqYNCbNWrMFyj7N62kwLnr4ETpAodXnA= Content-Language: en-gb X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.27 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 15 Aug 2018 16:41:18 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 > From: owner-freebsd-security@freebsd.org security@freebsd.org> On Behalf Of Alexandr Krivulya > Sent: Wednesday, August 15, 2018 4:26 PM > > Hi, freebsd-security > > Can CVE-2018-6922 be addressed by pf's fragment reassemble and > reassemble tcp options or can it potentially lead to memory overflow > (set limit frags?) when this options enabled? And, the same question, but for ipfw2's "reass"? Thanks! - -- Regards, Terrence Koeman, PhD/MTh/BPsy Darkness Reigns (Holding) B.V. Please quote relevant replies. -----BEGIN PGP SIGNATURE----- iQIyBAEBCAAdFiEEaUo4+yP241VvS+bXJQVB6quqOE8FAlt0V6AACgkQJQVB6quq OE/Avw/4vc+nRUcgUWbsiCgJqbr1rEM9+eGZ99zWc8Lq2yJZ+j2axL5Z2mW4zrQY 0XajJX5eQBSUTkzhIi40Srfq/LQP/5b4tVKMR76wusGfrlQcgTnDy7Q5VfwqnC1q XpMM3FXBmLV5u36U/gyO/PyKUasc/JNz9WYnG193OcStsyq2B7MjYxMEjcdVjmYJ OXqm/IgBXatCKsCdZI8BXjTDK5yhcNTfFcyBzCj8RqCdOROOPc2Z8cdjnqDWqlcO hl9nDIBt2GfYC29IZDcakq3u1scgea7Gwah1yQEdXT/F78NSDSfUs/I17eOsSyul yJsPofenuUD1rVJ1uPB2/ngOPGNu8vVx3vkESFAkTFBBQs+TPyMm9aZNwo/Bei7n O/MOI8C35GzOHiONvmWJbuPn7z7Z9F2Qiog3HhgyNGvcSG2LCwg36CLY+Y1l9NTu xOxY0HMWB49lHwLvcv3YVQgaSGjuaqifZxQ9KGXUhBaim9/DKnNDkP3rl21fbzhx 0lIKKnFhGte0n7K03tlVf2BetQEB+vFyFGuqOFGT8J6qqCSfvucKF/WddEM6ffUl /iuY1BVAHU0PoSYovTfWUK4+b+cfpC6fIkDAAjDKS2i6SKq5JNU+lQTy1riCPmQP ivG2EmmidQvVaqd9FuljVl2oDRICDkR55dd8kYTp6+wjE84snw== =krDy -----END PGP SIGNATURE-----