Bug 25195

Summary: a attacker can make ICMP messages apply to all sessions.
Product: Base System Reporter: jesper <jesper>
Component: kernAssignee: freebsd-bugs (Nobody) <bugs>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: 5.0-CURRENT   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
file.diff none

Description jesper 2001-02-18 20:50:01 UTC 
	In the current code we take the port numbers and address from the ICMP packet
we get in, and we use 0 as a wildcard indicator - this means if a attacker sends
us a ICMP packet where the attached IP header (+ 8 bytes) has the address and port
numbers == 0, then we'll treat it as a wildcard, and apply the notification to
all sessions.

Fix: Apply this fix.
Comment 1 Jesper Skriver freebsd_committer freebsd_triage 2001-02-20 23:30:19 UTC 
State Changed
From-To: open->closed

Different fix to problem committed.