FreeBSD Security Advisory FreeBSD-SA-09:10.ipv6

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-09:10.ipv6 Security Advisory The FreeBSD Project Topic: Missing permission check on SIOCSIFINFOIN6 ioctl Category: core Module: netinet6 Announced: 2009-06-10...

Denial of service

The mldinput function in sys/netinet6/mld6.c in the kernel in NetBSD 4.0, FreeBSD, and KAME, when INET6 is enabled, allows remote attackers to cause a denial of service divide-by-zero error and panic via a malformed ICMPv6 Multicast Listener Discovery MLD query with a certain Maximum Response Del...

CVE-2008-1057

The ip6checkrh0hdr function in netinet6/ip6input.c in OpenBSD 4.2 allows attackers to cause a denial of service panic via malformed IPv6 routing headers...

CVE-2008-0177

The ipcomp6input function in sys/netinet6/ipcompinput.c in the KAME project before 20071201 does not properly check the return value of the mpulldown function, which allows remote attackers to cause a denial of service system crash via an IPv6 packet with an IPComp header...

CVE-2008-0177

CVE-2008-0177 arises from an unchecked return value in ipcomp6_input (sys/netinet6/ipcomp_input.c) in the KAME project, where m_pulldown is not verified before use. This allows remote attackers to trigger a denial of service (system crash) by sending an IPv6 packet containing an IPComp header. Th...