This is fixed in Disco; I opened Bionic and Cosmic tasks since the bug
needs to be open in some way for it to be tracked.
** Changed in: network-manager (Ubuntu Disco)
Status: Fix Committed => Fix Released
** Also affects: network-manager (Ubuntu Cosmic)
Importance: Undecided
Status: New
** Also affects: network-manager (Ubuntu Bionic)
Importance: Undecided
Status: New
** Changed in: network-manager (Ubuntu Bionic)
Status: New => Fix Committed
** Changed in: network-manager (Ubuntu Bionic)
Importance: Undecided => High
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to network-manager in Ubuntu.
https://bugs.launchpad.net/bugs/1796622
Title:
NetworkManager IPv6 DAD lifetime behavior introduce security risk
Status in network-manager package in Ubuntu:
Fix Released
Status in network-manager source package in Bionic:
Fix Committed
Status in network-manager source package in Cosmic:
New
Status in network-manager source package in Disco:
Fix Released
Bug description:
Description:
When performing IPv6 certification test, two DAD test cases (3.2.5c and d)
check the remaining lifetime feature of the IPv6 packets. The Network trace
shows that the remaining lifetime becomes infinite when running these test
cases. Hence when running in IPv6 environment with Network Manager enabled,
there is a risk of packets travelling in network which has valid lifetime
always. If these packets are snooped by a hacker he can reply to these packets
and they can send legitimate packets which are actually not.
According to https://tools.ietf.org/search/rfc4862, page 19:
"The above rules address a specific denial-of-service attack in which a bogus
advertisement could contain prefixes with very small Valid Lifetimes. Without
the above rules, a single unauthenticated advertisement containing bogus Prefix
Information options with short Valid Lifetimes could cause all of a node's
addresses to expire prematurely. The above rules ensure that legitimate
advertisements (which are sent periodically) will "cancel" the short Valid
Lifetimes before they actually take effect."
Other notes:
- 2 test cases pass without NetworkManager.
- Tested with different Linux Desktop Distributions, as long as
NetworkManager is running, those DAD test cases fail.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/network-manager/+bug/1796622/+subscriptions
--
Mailing list: https://launchpad.net/~touch-packages
Post to : touch-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~touch-packages
More help : https://help.launchpad.net/ListHelp
