NetBSD Announces Four New Security Advisories

Posted by CowboyNeal on Thursday February 19, 2004 @06:47PM from the staying-wary dept.

Dan writes "The NetBSD project has announced four new security advisories. NetBSD ships with the racoon(8) IKE (Internet Key Exchange) daemon, a vulnerability was found in the code for packet validation of "informational exchange" messages. Inconsistent IPv6 path MTU discovery handling vulnerability states that a malicious party can cause a remote kernel panic by using ICMPv6 "too big" messages. The OpenSSL 0.9.6 ASN.1 parser vulnerability could lead to a possible denial-of-service. Finally, shmat reference counting bug - programming error in the shmat(2) system call can result in a shared memory segment's reference count being erroneously incremented."

2 of 62 comments (clear)

Min score:

Reason:

Sort:

Darn, FreeBSD also affected. by TheLink · 2004-02-19 19:04 · Score: 5, Informative

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/ FreeBSD-SA-04:02.shmat.asc
--
- Too many replies beneath your current threshold
1. Re:Darn, FreeBSD also affected. by Tuzanor · 2004-02-20 04:46 · Score: 5, Informative
  
  All of the BSDs were affected. The bug was first found in freebsd about a month ago, then about 2 weeks ago OpenBSD was found to be vulnerable, and now the netbsd guys have found out too. So its the same MTU bug.
  This is no surprise, as they all use the same IPv6 stack (KAME).