OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
Bugtraq archives for 4th quarter (Oct-Dec) 1998: Re: nestea v2 against freebsd 3.0-Release

Re: nestea v2 against freebsd 3.0-Release

Niels Bakker (nielsEURO.NET)
Wed, 28 Oct 1998 19:49:44 +0100

Quoth Patrick Oonk:

> I tested this on TWO different virgin 3.0 boxes, without any effect.

The trick, as discussed on currentFreeBSD.ORG, was to use a precompiled
Linux binary, which apparently bypassed a certain sanity check in the
kernel.  It was indeed possible to force a kernel panic this way.

A fix by Don Lewis has been committed yesterday; the fixed version of
/src/sys/netinet/ip_input.c is 1.103 (1.104 contains some optimisations in
the fragment reassembly code).

Take care,


        -- Niels.