[12349] in bugtraq
Re: IBM AIX Packet Filter module
daemon@ATHENA.MIT.EDU (Troy A. Bollinger)
Wed Oct 27 13:30:25 1999
Mail-Followup-To: Brumbles <brummie@SECURE.I1.NET>, BUGTRAQ@SECURITYFOCUS.COM
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-Id: <19991026134739.A29974@austin.ibm.com>
Date: Tue, 26 Oct 1999 13:47:40 -0500
Reply-To: "Troy A. Bollinger" <troy@AUSTIN.IBM.COM>
From: "Troy A. Bollinger" <troy@AUSTIN.IBM.COM>
X-To: Brumbles <brummie@SECURE.I1.NET>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <Pine.BSI.3.95.991025143423.9048A-100000@secure.i1.net>
Quoting Brumbles (brummie@SECURE.I1.NET):
>
> I have tried unsuccessfully to get any response from IBM on the following,
> apparently unless you have a support contract you cant report bugs..
> (well.. you can.. "Program Services", but thats a link to /dev/null
> apparently.)
You can always send new AIX vulnerabilities to the
security-alert@austin.ibm.com mail address.
> AixLevel AIX4.3.2
> Packet Filtering Module, in particular the command genfilt does not allow
> the addition of filters with port numbers greater than 32767
>
I've opened defect 289790 to address this. It appears to be caused by
using a "short" instead of an "unsigned short" for the port number.
--
Troy Bollinger troy@austin.ibm.com
AIX Security Development security-alert@austin.ibm.com
PGP keyid: 1024/0xB7783129 Troy's opinions are not IBM policy
