[11652] in bugtraq
Re: Local DoS in FreeBSD
daemon@ATHENA.MIT.EDU (Darren Reed)
Thu Sep 2 15:26:56 1999
Content-Type: text
Message-Id: <199909010130.LAA10648@cheops.anu.edu.au>
Date: Wed, 1 Sep 1999 11:30:26 +1000
Reply-To: Darren Reed <avalon@COOMBS.ANU.EDU.AU>
From: Darren Reed <avalon@COOMBS.ANU.EDU.AU>
X-To: rabbi@QUICKIE.NET
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <Pine.LNX.4.10.9908270039010.16315-100000@thetis.deor.org> from
"L. Sassaman" at Aug 27, 99 00:43:47 am
In some mail from L. Sassaman, sie said:
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> This was first posted to the FreeBSD security list on the 9th of August,
> subsequently discussed on freebsd-stable and freebsd-hackers... no one
> seems to care, even though it is able to lock up 2.2.6, 2.2.8, and 3.2.x
> machines consistantly. I have also been told that it affects NetBSD and
> OpenBSD, though I haven't confirmed it.
>
> Someone with the know-how care to fix?
Fixing this has been discussed internally, I imagine, by many of the
affected OS's. The problem is a resource stavation issue - in this
case mbuf's. Arguably, it shouldn't "lock up", just freeze up anything
that does networking.
I imagine you could lock up more than just the *BSD's with this program.
Darren
