From owner-freebsd-users-jp@freebsd.org Tue Sep 29 05:54:25 2015 Return-Path: Delivered-To: freebsd-users-jp@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id B0E5FA0B204 for ; Tue, 29 Sep 2015 05:54:25 +0000 (UTC) (envelope-from heiko-rhauderfehn@t-online.de) Received: from mailout01.t-online.de (mailout01.t-online.de [194.25.134.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mailout00.t-online.de", Issuer "TeleSec ServerPass DE-1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 5AB93144A for ; Tue, 29 Sep 2015 05:54:25 +0000 (UTC) (envelope-from heiko-rhauderfehn@t-online.de) Received: from fwd16.aul.t-online.de (fwd16.aul.t-online.de [172.20.26.243]) by mailout01.t-online.de (Postfix) with SMTP id DED4F41C850 for ; Tue, 29 Sep 2015 07:54:16 +0200 (CEST) Received: from [192.168.1.253] (EXQxCBZvrhS-pcy1iEmOms9XCloUJRcAhlWnLGS2v5QeR6pYkp2bkVceGG1adQUwB9@[2.232.70.62]) by fwd16.t-online.de with (TLSv1:DHE-RSA-AES256-SHA encrypted) esmtp id 1Zgnri-38xhOO0; Tue, 29 Sep 2015 07:54:14 +0200 MIME-Version: 1.0 To: freebsd-users-jp@FreeBSD.org From: "E-mail Administrator" Date: Tue, 29 Sep 2015 07:54:15 +0200 Message-ID: <1Zgnri-38xhOO0@fwd16.t-online.de> X-ID: EXQxCBZvrhS-pcy1iEmOms9XCloUJRcAhlWnLGS2v5QeR6pYkp2bkVceGG1adQUwB9 X-TOI-MSGID: 66dd96e2-e0d1-473e-82e4-c205de0ca12e Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Description: Mail message body X-Content-Filtered-By: Mailman/MimeDel 2.1.20 Subject: [FreeBSD-users-jp 95608] E-mail Notice!!!(freebsd-users-jp@FreeBSD.org) X-BeenThere: freebsd-users-jp@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Discussion relevant to FreeBSD communities in Japan List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 29 Sep 2015 05:54:25 -0000 E-mail Notice for freebsd-users-jp@FreeBSD.org. = Dear freebsd-users-jp@FreeBSD.org, = 3840MB 4096MB = Current size Maximum size = This is to notify you that you wont be able to send or receive mails As = you have used 98% of your quota and your account will be closed. The safety of your E-mail account is important. To avoid this from happening please click here to avoid suspension of E-m= ail account. Warning!!! please do not ignore message to avoid your email -freebsd-use= rs-jp@FreeBSD.org- account from being closed. Thanks, Mail System Admin= istrator This notification was sent to dprince_eze@yahoo.com; =20 From owner-freebsd-users-jp@freebsd.org Thu Oct 1 01:52:38 2015 Return-Path: Delivered-To: freebsd-users-jp@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 0775FA0C94D for ; Thu, 1 Oct 2015 01:52:38 +0000 (UTC) (envelope-from hirano@t.kanazawa-u.ac.jp) Received: from mailwd01.kanazawa-u.ac.jp (mailwd01.kanazawa-u.ac.jp [133.28.3.23]) (using TLSv1.1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 9BA2E1984 for ; Thu, 1 Oct 2015 01:52:37 +0000 (UTC) (envelope-from hirano@t.kanazawa-u.ac.jp) Received: from mailvc06.kanazawa-u.ac.jp (mailvc06.kanazawa-u.ac.jp [133.28.3.96]) by mailwd01.kanazawa-u.ac.jp (Postfix) with ESMTP id 120083C065A for ; Thu, 1 Oct 2015 10:42:12 +0900 (JST) Received: from mailvc06.kanazawa-u.ac.jp (localhost [127.0.0.1]) by localhost.kanazawa-u.ac.jp (Postfix) with ESMTP id EFD3149F1E for ; Thu, 1 Oct 2015 10:42:11 +0900 (JST) Received: from smtp01.kanazawa-u.ac.jp (smtp01.kanazawa-u.ac.jp [133.28.3.64]) by mailvc06.kanazawa-u.ac.jp (Postfix) with ESMTP id E673F49F0C for ; Thu, 1 Oct 2015 10:42:11 +0900 (JST) Received: from mail.se.kanazawa-u.ac.jp (mail.se.kanazawa-u.ac.jp [133.28.0.131]) by smtp01.kanazawa-u.ac.jp (Postfix) with ESMTP id E1D3811605A for ; Thu, 1 Oct 2015 10:42:11 +0900 (JST) Received: from [192.168.1.197] (canes.ec.t.kanazawa-u.ac.jp [133.28.97.35]) (Authenticated sender: hirano@se.kanazawa-u.ac.jp) by mail.se.kanazawa-u.ac.jp (Postfix) with ESMTPSA id D58E54E625 for ; Thu, 1 Oct 2015 10:42:11 +0900 (JST) References: <20150929183942.569F311FD@freefall.freebsd.org> To: freebsd-users-jp@freebsd.org From: Akihiro HIRANO Message-ID: <560C8F77.8000801@t.kanazawa-u.ac.jp> Date: Thu, 1 Oct 2015 10:42:15 +0900 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.2.0 MIME-Version: 1.0 In-Reply-To: <20150929183942.569F311FD@freefall.freebsd.org> Content-Type: multipart/mixed; boundary="------------030507030207030505060208" X-TM-AS-MML: No Subject: [FreeBSD-users-jp 95609] Re: FreeBSD Security Advisory FreeBSD-SA-15:24.rpcbind X-BeenThere: freebsd-users-jp@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Discussion relevant to FreeBSD communities in Japan List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 01 Oct 2015 01:52:38 -0000 This is a multi-part message in MIME format. --------------030507030207030505060208 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit 平野@金沢大です。 On 2015/09/30 3:39, FreeBSD Security Advisories wrote: > ============================================================================= > FreeBSD-SA-15:24.rpcbind Security Advisory > The FreeBSD Project > > Topic: rpcbind(8) remote denial of service  10.1R amd64マシンでfreebsd-updateして上記を適用すると、 rpcbindが落ちまくるという症状になりました。 NISのサーバ兼クライアントだったので、NISが使用不能なりました。  freebsd-securityでも同じような訴えがありました。 添付のパッチで直ったという報告がありますが、 当方ではまだテストしておりません。  以上、ご参考までに。 ---- 平野晃宏@金沢大学 大学院 自然科学研究科 電子情報科学専攻 hirano@t.kanazawa-u.ac.jp --------------030507030207030505060208 Content-Type: text/plain; charset=UTF-8; name="rpcbind.diff" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="rpcbind.diff" SW5kZXg6IHVzci5zYmluL3JwY2JpbmQvcnBjYl9zdmNfY29tLmMNCj09PT09PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT0N Ci0tLSB1c3Iuc2Jpbi9ycGNiaW5kL3JwY2Jfc3ZjX2NvbS5jCShyZXZpc2lvbiAyODg0MjEp DQorKysgdXNyLnNiaW4vcnBjYmluZC9ycGNiX3N2Y19jb20uYwkod29ya2luZyBjb3B5KQ0K QEAgLTEwNTIsMTIgKzEwNTIsMTUgQEAgc3RhdGljIGJvb2xfdA0KIG5ldGJ1Zl9jb3B5YnVm KHN0cnVjdCBuZXRidWYgKmRzdCwgY29uc3Qgc3RydWN0IG5ldGJ1ZiAqc3JjKQ0KIHsNCiAN Ci0JYXNzZXJ0KGRzdC0+YnVmID09IE5VTEwpOw0KKwlpZiAoZHN0LT5sZW4gIT0gc3JjLT5s ZW4gfHwgZHN0LT5idWYgPT0gTlVMTCkgew0KKwkJaWYgKGRzdC0+YnVmICE9IE5VTEwpDQor CQkJZnJlZShkc3QtPmJ1Zik7DQorCQlpZiAoKGRzdC0+YnVmID0gbWFsbG9jKHNyYy0+bGVu KSkgPT0gTlVMTCkNCisJCQlyZXR1cm4gKEZBTFNFKTsNCiANCi0JaWYgKChkc3QtPmJ1ZiA9 IG1hbGxvYyhzcmMtPmxlbikpID09IE5VTEwpDQotCQlyZXR1cm4gKEZBTFNFKTsNCisJCWRz dC0+bWF4bGVuID0gZHN0LT5sZW4gPSBzcmMtPmxlbjsNCisJfQ0KIA0KLQlkc3QtPm1heGxl biA9IGRzdC0+bGVuID0gc3JjLT5sZW47DQogCW1lbWNweShkc3QtPmJ1Ziwgc3JjLT5idWYs IHNyYy0+bGVuKTsNCiAJcmV0dXJuIChUUlVFKTsNCiB9DQo= --------------030507030207030505060208--