Print Page - [SOLVED] CVE-2023-4809

Title: [SOLVED] CVE-2023-4809
Post by: seed on September 09, 2023, 05:14:19 PM

Hello there

Smells like Kernel update to me ;D

QuoteA few months ago, as part of our investigations on IPv6 security in the NetSecurityLab @ Sapienza University, we discovered a vulnerability that allows attackers to bypass rules in pf-based IPv6 firewalls in particular conditions. Let's see some details of this vulnerability.

https://www.enricobassetti.it/2023/09/cve-2023-4809-freebsd-pf-bypass-when-using-ipv6/

Title: Re: CVE-2023-4809
Post by: chemlud on September 09, 2023, 08:49:56 PM

bug? feature?

Title: Re: CVE-2023-4809
Post by: franco on September 09, 2023, 09:16:46 PM

How about a month ago? Quick enough?

https://github.com/opnsense/changelog/blob/01889aa7eb9c4e75c3aff6dde9abeca18f16ea55/community/23.7/23.7.1#L37

Cheers,
Franco

Title: Re: CVE-2023-4809
Post by: seed on September 09, 2023, 09:44:27 PM

QuoteHow about a month ago? Quick enough?

I thought its a similar bug. Did not read the details. My bad.

Title: Re: [SOLVED] CVE-2023-4809
Post by: franco on September 09, 2023, 09:52:14 PM

My bad as well. I forgot the smiley. :)

Cheers,
Franco

OPNsense Forum

Archive => 23.7 Legacy Series => Topic started by: seed on September 09, 2023, 05:14:19 PM