In FreeBSD 12.2-STABLE before r368250, 11.4-STABLE before r368253, 12.2-RELEASE before p1, 12.1-RELEASE before p11 and 11.4-RELEASE before p5 rtsold(8) does not verify that the RDNSS option does not extend past the end of the received packet before processing its contents. While the kernel currently ignores such malformed packets, it passes them to userspace programs. Any programs expecting the kernel to do validation may be vulnerable to an overflow.

- Kategori: NIST-Güvenlik Açıkları
Bu gönderiyi paylaşın
Share on linkedin
LinkedIn
Share on twitter
Twitter
Share on facebook
Facebook
Share on whatsapp
WhatsApp
Benzer Yazılar
6 Kasım 2023
6 Kasım 2023
6 Kasım 2023
6 Kasım 2023
6 Kasım 2023
No more posts to show
Bize Ulaşın
Haberler
Güncel Güvenlik Açıkları
Bizi Takip Edin