This is force commit to mention about previous commit.

Browse Source

- (possible) remote kernel panic fix - out of bounds access on
  ill-formed ipopt.
- strict boundary check on ipopt.
- make sure to enforce inbound IPsec policy on all final header.
- add missing ipcomp entry from ipprotosw.
- 127/8 must not appear on wire - RFC1122.
  this is rather important as we use weak host model, so outsider
  can abuse 127.0.0.1 from outside.
- introduce ipstat.ips_badaddr
- use ipsec_gethist() to prevent packet filters from looking at
  decapulated packets.
- remove duplicate 127.0.0.0/8 checking.

...

This commit is contained in:

Hajimu UMEMOTO 2001-06-11 18:21:31 +00:00

parent 4d38dc6689

commit b95111df12

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Show Stats Download Patch File Download Diff File Expand all files Collapse all files

Diff Content Not Available