From mboxrd@z Thu Jan  1 00:00:00 1970
From: Michael Tremer <michael.tremer@ipfire.org>
To: development@lists.ipfire.org
Subject: SECURITY ADVISORY: outgoing firewall accepts packets unintendedly
Date: Tue, 07 Aug 2012 16:53:16 +0200
Message-ID: <1344351196.7540.46.camel@rice-oxley.tremer.info>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============3318824132708236713=="
List-Id: <development.lists.ipfire.org>

--===============3318824132708236713==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

Hello,

there is a problem in the outgoing firewall if it is used in mode 1.
Packets are accepted from blue even if there is no rule for the MAC
address of the sender.

This problem has got a medium severity and does not affect any other
configuration of the outgoing firewall and does not occur when no blue
network interface exists.

There is a fix available:
http://git.ipfire.org/?p=3Dpeople/ms/ipfire-2.x.git;a=3Dcommitdiff;h=3D78a14a=
bf81e61ea4fc62d313dfd6779cda9421ae

Please install and test. I am not going to repeat this request anymore.

Michael


--===============3318824132708236713==--