|Subject:||Re: [lwip-users] handle RST spoofing? CVE-2004-0230|
|Date:||Mon, 19 May 2014 21:05:43 +0200|
|User-agent:||Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:24.0) Gecko/20100101 Thunderbird/24.4.0|
Fabian Koch wrote:
Sorry for replying so late, this question might have been better off on the lwip-devel list...
As an lwIP user, after reading the CVE description, I think we're good with leaving it the way it is. I think so because I can't say to fully understand the implications of the suggested change.
Things might look differently depending on the kind of application used, though, so we might want to fix this anyway...
Would you care for a patch implementing the suggested change?
|[Prev in Thread]||Current Thread||[Next in Thread]|