Bryan Steele :flan_beard:
Follow

pf is not affected by the recent FreeBSD security advisory (FreeBSD-SA-23:10\.pf).

"This behavior seems to be present since 2013 when I added support for atomic fragments to pf. The relevant code is in OpenBSD pf_walk_header6() in pf.c. There a bunch of sanity checks are done for the IPv6 header chain resulting in packet drops. This function does not exist in FreeBSD."

marc.info/?l=oss-security&m=16

· · 2 · 19 · 21
Sign in to participate in the conversation
BSD Network

bsd.network is a *BSD-adjacent Mastodon Instance. We have a code of conduct.

Resources

Developers

What is Mastodon?

bsd.network

More…

v3.5.19+iceage · Privacy policy