Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 20 Feb 2001 15:25:07 -0800 (PST)
From:      Jesper Skriver <jesper@FreeBSD.org>
To:        cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject:   cvs commit: src/sys/netinet tcp_subr.c udp_usrreq.c
Message-ID:  <200102202325.f1KNP7317790@freefall.freebsd.org>

next in thread | raw e-mail | index | archive | help
jesper      2001/02/20 15:25:07 PST

  Modified files:
    sys/netinet          tcp_subr.c udp_usrreq.c 
  Log:
  Only call in_pcbnotify if the src port number != 0, as we
  treat 0 as a wildcard in src/sys/in_pbc.c:in_pcbnotify()
  
  It's sufficient to check for src|local port, as we'll have no
  sessions with src|local port == 0
  
  Without this a attacker sending ICMP messages, where the attached
  IP header (+ 8 bytes) has the address and port numbers == 0, would
  have the ICMP message applied to all sessions.
  
  PR:		kern/25195
  Submitted by:	originally by jesper, reimplimented by jlemon's advice
  Reviewed by:	jlemon
  Approved by:	jlemon
  
  Revision  Changes    Path
  1.90      +15 -1     src/sys/netinet/tcp_subr.c
  1.84      +14 -1     src/sys/netinet/udp_usrreq.c


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200102202325.f1KNP7317790>