From owner-freebsd-security@FreeBSD.ORG Fri Oct 2 21:11:23 2009 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A2AEB106568D for ; Fri, 2 Oct 2009 21:11:23 +0000 (UTC) (envelope-from pieter@thedarkside.nl) Received: from mail.thelostparadise.com (cl-92.ede-01.nl.sixxs.net [IPv6:2001:7b8:2ff:5b::2]) by mx1.freebsd.org (Postfix) with ESMTP id 6C7AB8FC18 for ; Fri, 2 Oct 2009 21:11:23 +0000 (UTC) Received: from [192.168.1.13] (home [85.145.92.158]) by mail.thelostparadise.com (Postfix) with ESMTP id 094B361C4B; Fri, 2 Oct 2009 23:11:22 +0200 (CEST) Message-ID: <4AC66C5A.3020301@thedarkside.nl> Date: Fri, 02 Oct 2009 23:10:50 +0200 From: Pieter de Boer User-Agent: Thunderbird 2.0.0.23 (X11/20090907) MIME-Version: 1.0 To: Jon Passki References: <1B399692-1D5A-49C3-BDE7-7FAAA9C63910@passki.us> In-Reply-To: <1B399692-1D5A-49C3-BDE7-7FAAA9C63910@passki.us> X-Enigmail-Version: 0.95.7 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: FreeBSD-Security Subject: Re: Fwd: FreeBSD Security Advisory FreeBSD-SA-09:13.pipe X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 02 Oct 2009 21:11:23 -0000 Jon Passki wrote: > Has the FreeBSD Secteam tested setting VM_MIN_ADDRESS to some high > number such as 65536? This does not fix the vulnerability per se, but > one would hope it stops a user mapping code to 0x0. > See the FreeBSD-EN-09:05.null erratum that contains a patch that allows you to do this with a sysctl :) -- Pieter