Site Navigation

Date:      Wed, 24 Aug 2016 08:09:57 -0400
From:      Shawn Webb <shawn.webb@hardenedbsd.org>
To:        "Landon J. Fuller" <landonf@FreeBSD.org>
Cc:        src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org
Subject:   Re: svn commit: r304692 - head/sys/dev/bhnd/bhndb
Message-ID:  <20160824120957.GA74786@mutt-hardenedbsd>
In-Reply-To: <201608231903.u7NJ3Bjc019151@repo.freebsd.org>
References:  <201608231903.u7NJ3Bjc019151@repo.freebsd.org>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

--VbJkn9YxBvnuCH5J
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Tue, Aug 23, 2016 at 07:03:11PM +0000, Landon J. Fuller wrote:
> Author: landonf
> Date: Tue Aug 23 19:03:11 2016
> New Revision: 304692
> URL: https://svnweb.freebsd.org/changeset/base/304692
>=20
> Log:
>   bhndb(4): Fix unsigned integer underflow in dynamic register window
>   handling. This resulted in the window target being left uninitialized
>   when an underflow occured.

Is this remotely exploitable? What are the ramifications of this bug?

Thanks,

--=20
Shawn Webb
Cofounder and Security Engineer
HardenedBSD

GPG Key ID:          0x6A84658F52456EEE
GPG Key Fingerprint: 2ABA B6BD EF6A F486 BE89  3D9E 6A84 658F 5245 6EEE

--VbJkn9YxBvnuCH5J
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQIcBAEBCAAGBQJXvY6UAAoJEGqEZY9SRW7uZvQQAKJCVI3d4wOnGVlE2eGf60c5
pc5ZTAD48XbtD89u6yL/X70jrislIaHeCafU1cd/R55J9ATpmISDcz8aHjQrzQaI
3qwTba0ZoeaLcUhm0Kkkbai+1au1MdW+409gdJNAMjlgVVofyrkns3/yiXOMsVWJ
cUzsFM2RTiUOqh7SYK7fgUnIi+OO+53LJNS4cNEPtUohXa2mCXB9bp7HBcB1sX7G
5df6mGjT/xBkNAiru2R4dNmEX8hcPm0uADfqbjYo78weH3cLN+AP5bh3PLB536j7
A8gqpaB35B8FDPyO4kDOytwd/PTS594jr1Xz8lKckCVObliG3JCCvuB5a3eZoGbG
73rUAUbdh+NHv+tHfBxk2IQkO6ovL5svH7HD74HV0oby/97zPXTEsGqLNEvZvFje
9Jv3off1sBN2fxhavGZVxYxADon+NlEVZkmFGD5d/OMCQ5cz/SKJj5xeGY9kCzws
/ERsMk02EGD6gsAsEY/G8/Vfng2hspjFDNnR0khV85/pfGoQsUUrw0LReisiJY6j
/RKqJJXyJrDVk05Wva/A8BVyh9qm3UUngeR4k8jYR8v73ZrCyqbiRljXk9gqVuR1
tb7ADuVxoYfOdG0e7OcbZhd+1WbGJ52+HS4J8yX/VZGV0gMJ8Xo4sGX9H7+E9BAs
dzjM3zK05QoYFs6zxToJ
=IduL
-----END PGP SIGNATURE-----

--VbJkn9YxBvnuCH5J--

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20160824120957.GA74786>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact