From owner-freebsd-security  Mon Apr 22 13:55:32 2002
Delivered-To: freebsd-security@freebsd.org
Received: from elvis.mu.org (elvis.mu.org [192.203.228.196])
	by hub.freebsd.org (Postfix) with ESMTP id EBC7F37B7F5
	for <freebsd-security@freebsd.org>; Mon, 22 Apr 2002 13:53:34 -0700 (PDT)
Received: by elvis.mu.org (Postfix, from userid 1192)
	id DA479AE24A; Mon, 22 Apr 2002 13:32:16 -0700 (PDT)
Date: Mon, 22 Apr 2002 13:32:16 -0700
From: Alfred Perlstein <bright@mu.org>
To: D J Hawkey Jr <hawkeyd@visi.com>
Cc: security at FreeBSD <freebsd-security@freebsd.org>
Subject: Re: Q about FreeBSD-SA-02:23.stdio
Message-ID: <20020422203216.GR38320@elvis.mu.org>
References: <20020422151956.A919@sheol.localdomain>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20020422151956.A919@sheol.localdomain>
User-Agent: Mutt/1.3.27i
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

* D J Hawkey Jr <hawkeyd@visi.com> [020422 13:27] wrote:
> Hello All.
> 
> Received this SA today, and I have but four questions:
> 
>   - Is this really only a kernel re-build and install thang?
>     - Shouldn't filedesc.h be copied to /usr/include/sys?

Doesn't matter.

>   - libc (and therefore userland) really isn't involved at all?
>     - 'keyinit' was used as an example, but the hole is
>       just in the kernel?

There's no hole in the kernel, this patch basically puts seatbelts
in the kernel to protect against a very easy to make mistake.

-Alfred

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message