Slashdot Mirror

← Back to Stories (view on slashdot.org)

OpenBSD Vulnerabilty

Posted by timothy on from the pretty-damn-obscure dept.

*no comment* writes "Normally vulnerability reports on slashdot wouldn't make it because there are so many. This one however is for the normally very secure OpenBSD. Someone can crash an OpenBSD bridge using a newly discovered ICMP exploit. More can be read here. This shouldn't affect most people as this only affects people that use OBSD as a bridge."

7 of 55 comments (clear)

  1. Re:Can't get to openbsd.org by gatorade123 · · Score: 5, Informative

    The quote is "Only one remote hole in the default install, in more than 8 years!"

    This exploit is only possible when you have bridging configured, which is not part of a default install, nor most common installations.

  2. Re:Can't get to openbsd.org by 0racle · · Score: 4, Informative

    This is a crash not an exploit, the OpenBSD team uses a very precise definition for that claim. They also seem to handle a crash that does not lead to an exploit in a more crass and off hand manner, but thats another story.

    --
    "I use a Mac because I'm just better than you are."
  3. Re:Are you kidding me? by Mark_MF-WN · · Score: 3, Informative

    It's only a big deal with Microsoft because the vulnerabilities in Microsoft software are typically quite severe and affect almost everyone.

  4. Re:Why'zit a 'Reliability' fix, not a 'Security' f by shiftyphil · · Score: 5, Informative

    Because the worst you can do with it is crash the system, not gain access.

  5. Re:Can't get to openbsd.org by Anonymous Coward · · Score: 3, Informative

    Isn't not even an exploit, I mean, come'on people, get a clue here. There's a huge difference between a DoS and an Exploit. This does nothing, even if someone, somehow knew there was a bridge.

  6. Re:Can't get to openbsd.org by Anonymous Coward · · Score: 5, Informative

    You have to have a bridge setup *AND* enable the special IPsec processing support on the bridge which means *very few* people would be affected by this issue.

  7. Re:Can't get to openbsd.org by Anonymous Coward · · Score: 2, Informative

    You need to have more than just bridging configured - you need the link2 flag set on the bridge, which is only useful if you are bridging two networks via a VPN.