Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Is this a Security Problem with Pfsense

    Scheduled Pinned Locked Moved General pfSense Questions
    4 Posts 3 Posters 449 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      Ryu945
      last edited by

      https://security.googleblog.com/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html

      Is this a problem with Pfsense?

      What network adjustment should be done to protect devices that have not been patched?

      1 Reply Last reply Reply Quote 0
      • dotdashD
        dotdash
        last edited by

        @https://blog.des.no/2016/02/freebsd-and-cve-2015-7547/:

        First of all: neither FreeBSD itself nor native FreeBSD applications are affected. While the resolver in FreeBSD’s libc and GNU libc share a common ancestry, the bug was introduced when the latter was rewritten to send A and AAAA queries in parallel rather than sequentially when the application requests both.

        1 Reply Last reply Reply Quote 0
        • K
          kpa
          last edited by

          The base FreeBSD has never used glibc and never will because of the licence.

          1 Reply Last reply Reply Quote 0
          • R
            Ryu945
            last edited by

            What about the second question.  Is there a rule I can apply to protect unpatched devices?

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.