Sorry if it was discussed somewhere else, but.. It seems like infamous TCP flaw found by Outpost24 reseachers near 1 year ago was finally released, here is the report about "multiple vendors affected": http://tools.cisco.com/security/center/viewAlert.x?alertId=18799. Vulnerability release was coordinated by CERT ( https://www.cert.fi/haavoittuvuudet/2008/tcp-vulnerabilities.html). It's know that, for example, RedHat doesn't treat it as an issue but a matter of design (http://kbase.redhat.com/faq/docs/DOC-18730) although it's also affected. So what about OpenBSD? Were developers aware of it and what is the reaction? Thanks in advance.
