Date: Thu, 26 Feb 2015 18:38:10 +0000 (GMT) From: Rui Paulo <rpaulo@me.com> To: Xin LI <delphij@FreeBSD.org> Cc: svn-src-head@freebsd.org, svn-src-all@freebsd.org, src-committers@freebsd.org Subject: Re: svn commit: r279262 - head/sys/netinet Message-ID: <08707d9e-929c-46b3-8bc5-a696c548ef1a@me.com>
next in thread | raw e-mail | index | archive | help
On Feb 24, 2015, at 09:43 PM, Xin LI <delphij@FreeBSD.org> wrote: Author: delphij Date: Wed Feb 25 05:42:59 2015 New Revision: 279262 URL: https://svnweb.freebsd.org/changeset/base/279262 Log: Fix integer overflow in IGMP protocol. Security: FreeBSD-SA-15:04.igmp Security: CVE-2015-1414 Found by: Mateusz Kocielski, Logicaltrust Analyzed by: Marek Kroemeke, Mateusz Kocielski (shm@NetBSD.org) and 22733db72ab3ed94b5f8a1ffcde850251fe6f466 It looks weird to me that a SHA1 hash is capable of analysing code.... Maybe the AI Winter has finally ended? :-)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?08707d9e-929c-46b3-8bc5-a696c548ef1a>