Bug 206943

Summary: aaa
Product: Networking Reporter: fengxw18
Component: IPV4Assignee: Stephen Hemminger (stephen)
Status: RESOLVED DUPLICATE    
Severity: high    
Priority: P1    
Hardware: All   
OS: Linux   
Kernel Version: version 3.9 Subsystem:
Regression: No Bisected commit-id:

Description fengxw18 2020-03-25 08:37:58 UTC
A forged ICMP "Fragmentation Needed" message embedded with an echo reply data can be used to defer the feedback of path MTU, thus tricking a Linux-based host (version 3.9 and higher) into fragmenting TCP segments, even if the host performs Path MTU discovery (PMTUD). Hence, an off-path attacker can poison the TCP data via IP fragmentation.
Comment 1 fengxw18 2020-03-25 09:17:27 UTC

*** This bug has been marked as a duplicate of bug 1 ***
Comment 2 Stephen Hemminger 2020-03-27 03:11:49 UTC
(In reply to fengxw18 from comment #1)
> 
> *** This bug has been marked as a duplicate of bug 1 ***

You marked as duplicate of wrong bug. Looks like should be 203945