HomeFreeBSD
Diffusion FreeBSD src repository 528d5d75e955

Address issue pointed out in CVE-2020-25705
528d5d75e955
Actions

Description

Address issue pointed out in CVE-2020-25705

Add jitter to the ICMP bandwidth limit to deny a side-channel port scan.

Reviewed by: kp, philip, cy, emaste
MFC after: 1 week
Differential Revision: https://reviews.freebsd.org/D27354

(cherry picked from commit ca4cd20c4afeb68ae30c4cc1103280590a099fe7)

Details

Provenance
gnnAuthored on Mar 19 2022, 4:48 PM
kpCommitted on Apr 7 2022, 7:35 AM
Reviewer
kp
Differential Revision
D27354: Address issue pointed out in CVE-2020-25705
Parents
rG73fc39b1bf99: Fix typo (interrups -> interrupts) in a sysctl description in tcp_lro.c.
Branches
Unknown
Tags
Unknown

Changes (1)

PathSize
sys/
netinet/

rG528d5d75e955

View Options

sys/netinet/ip_icmp.c

Loading...