Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 11 Jan 2018 21:20:43 -0500
From:      Lowell Gilbert <freebsd-security-local@be-well.ilk.org>
To:        Brahmanand Reddy <brahma.gdb@gmail.com>
Cc:        freebsd-security@freebsd.org
Subject:   Re: Need FreeBSD-SA-00:52(TCP uses weak initial sequence numbers) latest patch
Message-ID:  <44k1wnes1w.fsf@be-well.ilk.org>
In-Reply-To: <CAKsRH7nsUfkkLfoEuJXBcVpH%2BgnNRpLNb0fjxkJN-xKQnenuQg@mail.gmail.com> (Brahmanand Reddy's message of "Thu, 11 Jan 2018 22:13:48 %2B0530")
References:  <CAKsRH7nsVmhSMUT7TNzGfuN55_J9BkLBzO=8dvjLGvOZtri%2BuQ@mail.gmail.com> <CAKsRH7nsUfkkLfoEuJXBcVpH%2BgnNRpLNb0fjxkJN-xKQnenuQg@mail.gmail.com>

next in thread | previous in thread | raw e-mail | index | archive | help
Brahmanand Reddy <brahma.gdb@gmail.com> writes:

>>
>> Dear Team,
>>
>> Thanks for responding.
>>
>> Please share the corresponding FreeBSD-SA-00:52(*TCP uses weak initial
>> sequence numbers*) latest patch.
>>
>> the original problem reported on :
>> https://www.freebsd.org/security/advisories/FreeBSD-SA-00%3A52.tcp-iss.asc
>>
>> below list of similar CVEs
>>
>> CVE-2001-0328
>> CVE- 1999-0077
>> CVE-2000-0916
>>
>>
>> Thanks and regards,
>> Brahma

Those reports were fixed in FreeBSD almost 20 years ago,
so you already have the fixes.

Moreover, it seems silly to worry about minor security
patches when you're running a FreeBSD release that has
been out of support for over a year.



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44k1wnes1w.fsf>