Regarding recent FreeBSD security advisory: ipsec

Hasso Tepper hasso at estpak.ee
Thu Feb 14 05:21:04 PST 2008


http://security.freebsd.org/advisories/FreeBSD-SA-08:04.ipsec.asc

DragonFly was vulnerable as well and it was fixed in Nov 22 2007 in rev  
1.9 in the HEAD (so, it's fixed in 1.12 as well) and in rev 1.8.4.1 in 
the 1.10 branch.

There is bad news - in our code IPv4 was vulnerable as well, not just 
IPv6. But there is good news as well - GENERIC isn't affected because it 
doesn't have IPSEC support support compiled in.

So, please update if you haven't done it already and are using IPSEC.
 

-- 
Hasso Tepper





More information about the Kernel mailing list