Date: Thu, 18 Nov 2004 15:38:25 +0000 From: Josef El-Rayes <josef@FreeBSD.org> To: Xin LI <delphij@FreeBSD.org> Cc: cvs-all@FreeBSD.org Subject: Re: cvs commit: src/usr.sbin/pppd cbcp.c Message-ID: <20041118153825.GA12893@daemon.li> In-Reply-To: <200411181521.iAIFLCJ3062379@repoman.freebsd.org> References: <200411181521.iAIFLCJ3062379@repoman.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
This is a MIME-formatted message. If you see this text it means that your E-mail software does not support MIME-formatted messages. --=_daemon.li-14124-1100792305-0001-2 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Xin LI <delphij@FreeBSD.org>: > Correct a potential DoS vulnerability, as described at > =20 > http://www.securityfocus.com/archive/1/379450 This advisory is incorrect. It is actually not a DoS vulnerability as the attacker can only kill the connection to him, not others, see: http://marc.theaimsgroup.com/?l=3Dbugtraq&m=3D109941891320391 Thanks for MFC'ing this, Greets, Josef --=20 Josef El-Rayes (__) Email: josef@daemon.li \\\'',)=20 Web: http://daemon.li/ \/ \ ^ FreeBSD Security Team .\._/_) --=_daemon.li-14124-1100792305-0001-2 Content-Type: application/pgp-signature Content-Transfer-Encoding: 7bit Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iQEUAwUBQZzB8FnFItmnnbU8AQI7OAf3WUb6Be+uw6wUic1Qy2sXYamDVHo8LCzv 3PPGrflfrr6WxboiZA/4mYJk7AlA2wOiks+bUkLafbWFElNMocf6hzgtAqQunOZ8 oi/IBZWB2pCrw37HpuehYG03qFP968GhkO+vMsq78BLwVB5A2GnGQeAjkpVWulH/ tY2MmW+0B8e+BsjQ5qGKVl+y7IAO+e5XU3p+KzyfDRA2DHDcabdZB97YKKs3cWnI m/YipdXFeemOJi7Pn8uKOX3QirOnPbVKCAC1NKXjB7YaH9US+tFKDkwm8w6ye7kV JvAV4N9zvLeyL+ZrT21gFcZxHBGmNwncFqnP3/P746sgZ1h8IC+o =JDqo -----END PGP SIGNATURE----- --=_daemon.li-14124-1100792305-0001-2--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20041118153825.GA12893>