MNBSD-2008-7: ICMPv6 does not properly validate MTU in Packet Too Big messages

Severity: Unknown

Affected Package: kernel

Summary: ICMPv6 does not properly validate MTU in Packet Too Big messages

Description

The ICMPv6 code did not properly check the proposed MTU in the case of a Packet Too Big message, allowing a remote attacker to cause a kernel panic. Systems without IPv6 support were not affected. Users could update or block the offending ICMP traffic at a firewall or router. This corresponds to FreeBSD-SA-08:09.icmp6.

Affected Versions

kernel

Recommendations

No specific recommendations provided.

References

Additional Information

Aliases: CVE-2008-3530

Published: September 04, 2008
Last Modified: September 04, 2008