From owner-freebsd-security@freebsd.org  Fri Jul 28 12:15:38 2017
Return-Path: <owner-freebsd-security@freebsd.org>
Delivered-To: freebsd-security@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id C769EDC4F93
 for <freebsd-security@mailman.ysv.freebsd.org>;
 Fri, 28 Jul 2017 12:15:38 +0000 (UTC)
 (envelope-from erdgeist@erdgeist.org)
Received: from elektropost.org (elektropost.org [217.115.13.198])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 551308353E
 for <freebsd-security@freebsd.org>; Fri, 28 Jul 2017 12:15:37 +0000 (UTC)
 (envelope-from erdgeist@erdgeist.org)
Received: (qmail 26941 invoked from network); 28 Jul 2017 12:08:53 -0000
Received: from elektropost.org (HELO elektropost.org) (erdgeist@erdgeist.org)
 by elektropost.org with ESMTPS (DHE-RSA-AES128-SHA encrypted);
 28 Jul 2017 12:08:53 -0000
To: freebsd-security@freebsd.org
From: Dirk Engling <erdgeist@erdgeist.org>
Subject: DefCon lecture BSD Kern Vulns
Message-ID: <26de0aed-8151-6105-188f-ad0c6c6cf8b8@erdgeist.org>
Date: Fri, 28 Jul 2017 14:08:50 +0200
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:52.0)
 Gecko/20100101 Thunderbird/52.2.1
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 7bit
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Jul 2017 12:15:38 -0000

Out of curiosity:

have those findings officially been reported? Is someone working on them?

https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf

If not, shall I extract them?

Maybe we should start an "audit a subsystem" week ;)

  erdgeist

From owner-freebsd-security@freebsd.org  Fri Jul 28 13:04:07 2017
Return-Path: <owner-freebsd-security@freebsd.org>
Delivered-To: freebsd-security@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 56B35DC5BC8
 for <freebsd-security@mailman.ysv.freebsd.org>;
 Fri, 28 Jul 2017 13:04:07 +0000 (UTC)
 (envelope-from joey@joeykelly.net)
Received: from safegreet.com (safegreet.com [173.230.129.132])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 2CD63BE8
 for <freebsd-security@freebsd.org>; Fri, 28 Jul 2017 13:04:06 +0000 (UTC)
 (envelope-from joey@joeykelly.net)
Received: from localhost (localhost [127.0.0.1])
 by safegreet.com (Postfix) with ESMTP id 98DB94213
 for <freebsd-security@freebsd.org>; Fri, 28 Jul 2017 08:04:00 -0500 (CDT)
X-Virus-Scanned: amavisd-new at safegreet.com
Received: from safegreet.com ([127.0.0.1])
 by localhost (safegreet.com [127.0.0.1]) (amavisd-new, port 10024)
 with LMTP id YPDvYpiC3qmI for <freebsd-security@freebsd.org>;
 Fri, 28 Jul 2017 08:03:59 -0500 (CDT)
Received: by safegreet.com (Postfix, from userid 48)
 id E1AC94288; Fri, 28 Jul 2017 08:03:59 -0500 (CDT)
Received: from 64.88.172.228 (SquirrelMail authenticated user mmlj4)
 by safegreet.com with HTTP; Fri, 28 Jul 2017 08:03:59 -0500
Message-ID: <d8e4fd5a3475216b24a32e354dc3ce5a.squirrel@safegreet.com>
In-Reply-To: <26de0aed-8151-6105-188f-ad0c6c6cf8b8@erdgeist.org>
References: <26de0aed-8151-6105-188f-ad0c6c6cf8b8@erdgeist.org>
Date: Fri, 28 Jul 2017 08:03:59 -0500
Subject: Re: DefCon lecture BSD Kern Vulns
From: "Joey Kelly" <joey@joeykelly.net>
To: freebsd-security@freebsd.org
Cc: freebsd-security@freebsd.org
User-Agent: SquirrelMail/1.4.22-5.el6
MIME-Version: 1.0
Content-Type: text/plain;charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Jul 2017 13:04:07 -0000

I haven't read the paper yet, and I'm surely not up on things enough to
know what I'm looking at, but are these 0-days? If so, do they store them
up so they can present at defcon?

--Joey

> Out of curiosity:
>
> have those findings officially been reported? Is someone working on them?
>
> https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf
>
> If not, shall I extract them?
>
> Maybe we should start an "audit a subsystem" week ;)
>
>   erdgeist
> _______________________________________________
> freebsd-security@freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to
> "freebsd-security-unsubscribe@freebsd.org"
>


-- 
Joey Kelly
Minister of the Gospel and Linux Consultant
http://joeykelly.net
504-239-6550

From owner-freebsd-security@freebsd.org  Fri Jul 28 20:01:53 2017
Return-Path: <owner-freebsd-security@freebsd.org>
Delivered-To: freebsd-security@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 75764DCD86D
 for <freebsd-security@mailman.ysv.freebsd.org>;
 Fri, 28 Jul 2017 20:01:53 +0000 (UTC) (envelope-from yonas@fizk.net)
Received: from mail-io0-x229.google.com (mail-io0-x229.google.com
 [IPv6:2607:f8b0:4001:c06::229])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 42ED06EA77
 for <freebsd-security@freebsd.org>; Fri, 28 Jul 2017 20:01:53 +0000 (UTC)
 (envelope-from yonas@fizk.net)
Received: by mail-io0-x229.google.com with SMTP id c74so93613716iod.4
 for <freebsd-security@freebsd.org>; Fri, 28 Jul 2017 13:01:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fizk.net; s=google;
 h=subject:to:references:from:message-id:date:user-agent:mime-version
 :in-reply-to:content-language;
 bh=MOPO5VqD7U7XiDeB195V4FyPlAqlV0zDPQATQM4PtHI=;
 b=LT4RoLOCkhmx1VoQlyHgKzEgXdDIATt1agxM/9Oy8VsUL1Xyz+CQXm2TF1YbxIV1Dd
 nN5gIbS16Q78cL6oCph3MwwAZWH4MsMRRekCBV9gsrAocIFw78mcsB9vJ2zSvXQa7dWH
 PYPohEbXw7+VIljDNWEwQf81S3kgY9EqUaDQg=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:subject:to:references:from:message-id:date
 :user-agent:mime-version:in-reply-to:content-language;
 bh=MOPO5VqD7U7XiDeB195V4FyPlAqlV0zDPQATQM4PtHI=;
 b=lOvosxIza0cffR+Q09ivlRtNbaSLrC7sKh5U0kEDB5a5CF5hkb9heSXTCcmsHcOYmM
 iCgVp8Z/L+EcUKze9Pzn6VOuvU4XU5lG9jBkMRI+L4LrYaTGYsxTo0oFcOWKqHKMEM4X
 RvFWKHSGmZ/KbIKkUTqfu8a0dOq7rUrggPQyNqLRCZRpWaXLwZiHEPUbA0w9ONhp2GQ/
 BmhHDnVfLEP4Mnqia1Gkh+7nYZeuldKvUwZ+8HU1yFMx2PNRNfMKCbWvPtEuLntA4t4H
 y96/X9WGfRX58RFTbjCmICc1trveXlKWZlEGGW0R+HqN0tYtdGPl+T8qfGIGJ7f5aP6C
 EqLA==
X-Gm-Message-State: AIVw112nsJSwXoMqaXFBh9GS1tSZX1jK8VPAXiJ3Vr1wMmjTHrGkcI58
 spjaB2RkaXi4gloXP7PmCg==
X-Received: by 10.107.56.214 with SMTP id f205mr10914208ioa.208.1501272112228; 
 Fri, 28 Jul 2017 13:01:52 -0700 (PDT)
Received: from [192.168.2.200]
 (CPEf0f2494a5cf3-CMf0f2494a5cf0.cpe.net.cable.rogers.com. [174.117.121.225])
 by smtp.gmail.com with ESMTPSA id o8sm10673302ioo.56.2017.07.28.13.01.50
 for <freebsd-security@freebsd.org>
 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Fri, 28 Jul 2017 13:01:51 -0700 (PDT)
Subject: Re: DefCon lecture BSD Kern Vulns
To: freebsd-security@freebsd.org
References: <26de0aed-8151-6105-188f-ad0c6c6cf8b8@erdgeist.org>
From: Yonas Yanfa <yonas@fizk.net>
Message-ID: <5063fa01-3ebe-7e37-41d5-c5c65c4cc78f@fizk.net>
Date: Fri, 28 Jul 2017 16:01:32 -0400
User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:52.0) Gecko/20100101
 Thunderbird/52.2.1
MIME-Version: 1.0
In-Reply-To: <26de0aed-8151-6105-188f-ad0c6c6cf8b8@erdgeist.org>
Content-Language: en-US
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
X-Content-Filtered-By: Mailman/MimeDel 2.1.23
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Jul 2017 20:01:53 -0000

On 07/28/2017 08:08, Dirk Engling wrote:
> Out of curiosity:
>
> have those findings officially been reported? Is someone working on them?
>
> https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf
>
> If not, shall I extract them?
>
That link doesn't work for me:

# fetch 
"https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf"
No server SSL certificate
fetch: 
https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf: 
Authentication error

# fetch 
"http://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf" 

fetch: 
http://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf: 
No error: 0


-- 

Yonas Yanfa
In Love With Open Source
Drupal <http://drupal.org/user/473174> :: GitHub 
<http://github.com/yonas> :: Mozilla 
<https://addons.mozilla.org/en-US/thunderbird/user/4614995/>
fizk.net | yonas@fizk.net


From owner-freebsd-security@freebsd.org  Fri Jul 28 20:21:33 2017
Return-Path: <owner-freebsd-security@freebsd.org>
Delivered-To: freebsd-security@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id A720FDCDF63
 for <freebsd-security@mailman.ysv.freebsd.org>;
 Fri, 28 Jul 2017 20:21:33 +0000 (UTC)
 (envelope-from luke@solentwholesale.com)
Received: from mail-it0-x234.google.com (mail-it0-x234.google.com
 [IPv6:2607:f8b0:4001:c0b::234])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 791BB6F54A
 for <freebsd-security@freebsd.org>; Fri, 28 Jul 2017 20:21:33 +0000 (UTC)
 (envelope-from luke@solentwholesale.com)
Received: by mail-it0-x234.google.com with SMTP id v205so85960187itf.1
 for <freebsd-security@freebsd.org>; Fri, 28 Jul 2017 13:21:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=solentwholesale.com; s=google;
 h=mime-version:in-reply-to:references:from:date:message-id:subject:to
 :cc; bh=S96FhbkCA0bt15H0JLtbSAFL13BViSXxcRBEsE/eabA=;
 b=D1KWcaKsBxVHcUS5hm521rkm+XRJwfy5w6YHIO30l6FS/1oBr8rK3uH0/KrRQgIlWG
 bctES6LSKLRi5/fzpSH5CLgvxvv9p2rajVUlQRZIdWvqKUtS3Ngn8wQEHHgrkisaWOUl
 4gyQYUC0DQSzVIj70Cl0+jDphbEM8o9yQLpXo=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:mime-version:in-reply-to:references:from:date
 :message-id:subject:to:cc;
 bh=S96FhbkCA0bt15H0JLtbSAFL13BViSXxcRBEsE/eabA=;
 b=bBP7WWRM95bcI0Mm0DqU+tFQrbkmlaQ7/3nU6OwgGzURMXh9UMJ4QUbh2T3f5O4Ol4
 3VTGEOUikTlorfbeiT1NgOUC3rmCLpy7U8JAC/wlg48bETLLRKuLfGPc+39gja1+4Zpk
 io2AwQQEpbLrQbdrkHBV8GKG8o3rBPoGty1n0IXQrJSdBw9gpBmHleOCrSmjqR18UXxU
 XZJ01kVbe3rN8IAJA6Gpwgli5UCABIeZjyZqJP4Qq/6km8aedt6+sgt4DFBxYQ0XYd7f
 e1WcXH12GcyDrbyCN35y96C9jbuhTrsWqta5LOjIpg5Z20Wn/lZXE06aDn+f4SQDRHTi
 8S2Q==
X-Gm-Message-State: AIVw11166KPu0mt4Hb6JIoQiPC9KYn/HsfCOpFApYtx7KB5WwZ3mKuXD
 klam0ZcQB6cQvspnHfbHkPsz8c9D7C6u
X-Received: by 10.36.144.133 with SMTP id x127mr10836176itd.2.1501273288014;
 Fri, 28 Jul 2017 13:21:28 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.79.21.69 with HTTP; Fri, 28 Jul 2017 13:21:26 -0700 (PDT)
Received: by 10.79.21.69 with HTTP; Fri, 28 Jul 2017 13:21:26 -0700 (PDT)
In-Reply-To: <5063fa01-3ebe-7e37-41d5-c5c65c4cc78f@fizk.net>
References: <26de0aed-8151-6105-188f-ad0c6c6cf8b8@erdgeist.org>
 <5063fa01-3ebe-7e37-41d5-c5c65c4cc78f@fizk.net>
From: Luke Crooks <luke@solentwholesale.com>
Date: Fri, 28 Jul 2017 21:21:26 +0100
Message-ID: <CAC0r6X9XPeOvM7gzEPbonca6e6Kq0fxYG90MutDL4mw4zjs9ng@mail.gmail.com>
Subject: Re: DefCon lecture BSD Kern Vulns
To: Yonas Yanfa <yonas@fizk.net>
Cc: freebsd-security@freebsd.org
Content-Type: text/plain; charset="UTF-8"
X-Content-Filtered-By: Mailman/MimeDel 2.1.23
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Jul 2017 20:21:33 -0000

I was sent a link earlier, seems to work...

https://www.pdf-archive.com/2017/07/28/defcon-25-ilja-van-sprundel-bsd-kern-vulns/defcon-25-ilja-van-sprundel-bsd-kern-vulns.pdf

Some great work and an enjoyable read.

On 28 Jul 2017 21:02, "Yonas Yanfa" <yonas@fizk.net> wrote:

> On 07/28/2017 08:08, Dirk Engling wrote:
>
>> Out of curiosity:
>>
>> have those findings officially been reported? Is someone working on them?
>>
>> https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20pre
>> sentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf
>>
>> If not, shall I extract them?
>>
>> That link doesn't work for me:
>
> # fetch "https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20pr
> esentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf"
> No server SSL certificate
> fetch: https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20pre
> sentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf: Authentication
> error
>
> # fetch "http://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20pre
> sentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf"
> fetch: http://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20pres
> entations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf: No error: 0
>
>
> --
>
> Yonas Yanfa
> In Love With Open Source
> Drupal <http://drupal.org/user/473174> :: GitHub <http://github.com/yonas>
> :: Mozilla <https://addons.mozilla.org/en-US/thunderbird/user/4614995/>
> fizk.net | yonas@fizk.net
>
> _______________________________________________
> freebsd-security@freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org
> "
>

From owner-freebsd-security@freebsd.org  Fri Jul 28 20:23:33 2017
Return-Path: <owner-freebsd-security@freebsd.org>
Delivered-To: freebsd-security@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id BD778DCE18C
 for <freebsd-security@mailman.ysv.freebsd.org>;
 Fri, 28 Jul 2017 20:23:33 +0000 (UTC) (envelope-from yonas@fizk.net)
Received: from mail-it0-x22a.google.com (mail-it0-x22a.google.com
 [IPv6:2607:f8b0:4001:c0b::22a])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 812686F846
 for <freebsd-security@freebsd.org>; Fri, 28 Jul 2017 20:23:33 +0000 (UTC)
 (envelope-from yonas@fizk.net)
Received: by mail-it0-x22a.google.com with SMTP id h199so102244470ith.1
 for <freebsd-security@freebsd.org>; Fri, 28 Jul 2017 13:23:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fizk.net; s=google;
 h=subject:to:references:from:message-id:date:user-agent:mime-version
 :in-reply-to:content-language;
 bh=oRwTpojVR63w3SZghqoGcE3RFfF+o2eluZ3FlWFZOuQ=;
 b=jqOnsnEAnyvGBUK7T3ip0B0zbcwsug+p3Vhs5J092wzaItu1SJwYlUdxFoiaQTLZcv
 tn7ZfubNm9KpKxJNzDuhkjP4rr6KYebNm+hxlX5DtRJu+RkQn0LZukxZfyNp7TSK+A3R
 yBqL1KidxHGcU0QR/qsM8V9mbqSR9i9NMY7P8=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:subject:to:references:from:message-id:date
 :user-agent:mime-version:in-reply-to:content-language;
 bh=oRwTpojVR63w3SZghqoGcE3RFfF+o2eluZ3FlWFZOuQ=;
 b=CI9nu+YL8ue69zLUUaaA6MLFdBnJfL+guI59yQYxSDE/LBMy7CnWmuTcbJWTGsWk68
 VIMgvroGULH5k8p3BcTLvcsuo6f36v1i927wmSXsJBZKErc3fcKlSofQcKoOCWTE+cmy
 XiZvgqFMQffikolydtBrJNeNTzjkYgQfLfiz8ELCz3tugXJ5I49Re3LplJyo+D/0AGb9
 UGj4bTKLcvTN+HS2ec0bS3LHeBLcRoomh7DfShE5IWxmTe03BUIzAjMlUxJ5sxEIhcfu
 gQGbW6MVA9Jw++wzqRDXr+3uLPeb2uC2ylUKykopudfZupqtK80HUQHmk6KBCxxBGDMW
 lBpg==
X-Gm-Message-State: AIVw110ZMP4KaI+19qk0Po5YMawHUpJLdRRfkQdTamIZazCXdPZVWZOL
 ZwKenMAL9kNBGmz7MIsCZw==
X-Received: by 10.36.29.140 with SMTP id 134mr11077602itj.121.1501273412546;
 Fri, 28 Jul 2017 13:23:32 -0700 (PDT)
Received: from [192.168.2.200]
 (CPEf0f2494a5cf3-CMf0f2494a5cf0.cpe.net.cable.rogers.com. [174.117.121.225])
 by smtp.gmail.com with ESMTPSA id k65sm8581642itk.20.2017.07.28.13.23.31
 for <freebsd-security@freebsd.org>
 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Fri, 28 Jul 2017 13:23:31 -0700 (PDT)
Subject: Re: DefCon lecture BSD Kern Vulns
To: freebsd-security@freebsd.org
References: <26de0aed-8151-6105-188f-ad0c6c6cf8b8@erdgeist.org>
 <5063fa01-3ebe-7e37-41d5-c5c65c4cc78f@fizk.net>
 <CAC0r6X9XPeOvM7gzEPbonca6e6Kq0fxYG90MutDL4mw4zjs9ng@mail.gmail.com>
From: Yonas Yanfa <yonas@fizk.net>
Message-ID: <e7a8f6de-fa37-a43f-0ff0-a3c45e102a63@fizk.net>
Date: Fri, 28 Jul 2017 16:23:13 -0400
User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:52.0) Gecko/20100101
 Thunderbird/52.2.1
MIME-Version: 1.0
In-Reply-To: <CAC0r6X9XPeOvM7gzEPbonca6e6Kq0fxYG90MutDL4mw4zjs9ng@mail.gmail.com>
Content-Language: en-US
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
X-Content-Filtered-By: Mailman/MimeDel 2.1.23
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Jul 2017 20:23:33 -0000

On 07/28/2017 16:21, Luke Crooks wrote:
> I was sent a link earlier, seems to work...
>
> https://www.pdf-archive.com/2017/07/28/defcon-25-ilja-van-sprundel-bsd-kern-vulns/defcon-25-ilja-van-sprundel-bsd-kern-vulns.pdf
>
> Some great work and an enjoyable read.
>
> On 28 Jul 2017 21:02, "Yonas Yanfa" <yonas@fizk.net 
> <mailto:yonas@fizk.net>> wrote:
>
>     On 07/28/2017 08:08, Dirk Engling wrote:
>
>         Out of curiosity:
>
>         have those findings officially been reported? Is someone
>         working on them?
>
>         https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf
>         <https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf>
>
>         If not, shall I extract them?
>
>     That link doesn't work for me:
>
>     # fetch
>     "https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf
>     <https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf>"
>     No server SSL certificate
>     fetch:
>     https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf
>     <https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf>:
>     Authentication error
>
>     # fetch
>     "http://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf
>     <http://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf>"
>
>     fetch:
>     http://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf
>     <http://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf>:
>     No error: 0
>

Thanks!