|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: NetBSD Security Advisory 2008-010: Malicious PPPoE discovery packet can overrun a kernel buffer
From: Perry E. Metzger (perry
piermont.com)
Date: Tue Aug 26 2008 - 09:47:42 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
NetBSD Security-Officer <security-officernetbsd.org> writes:
> Solutions and Workarounds
> =========================
>
> The pseudo-device pppoe is present in GENERIC kernels. The system must
> be configured with a pppoe(4) instance.
>
> For all NetBSD versions, you need to obtain fixed kernel sources,
> rebuild and install the new kernel, and reboot the system.
This text is ambiguous -- a naive reader might not understand that if
there are no pppoe instances the kernel cannot be attacked.
--
Perry E. Metzger perrypiermont.com
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]