From owner-freebsd-security@FreeBSD.ORG  Thu Aug 22 10:53:22 2013
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTP id 8F9D7B43
 for <freebsd-security@freebsd.org>; Thu, 22 Aug 2013 10:53:22 +0000 (UTC)
 (envelope-from huzaifas@redhat.com)
Received: from mx1.redhat.com (mx1.redhat.com [209.132.183.28])
 by mx1.freebsd.org (Postfix) with ESMTP id 6F06E21DC
 for <freebsd-security@freebsd.org>; Thu, 22 Aug 2013 10:53:22 +0000 (UTC)
Received: from int-mx10.intmail.prod.int.phx2.redhat.com
 (int-mx10.intmail.prod.int.phx2.redhat.com [10.5.11.23])
 by mx1.redhat.com (8.14.4/8.14.4) with ESMTP id r7MAjcIb003327
 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK);
 Thu, 22 Aug 2013 06:45:38 -0400
Received: from babylon.pnq.redhat.com (dhcp193-192.pnq.redhat.com
 [10.65.193.192])
 by int-mx10.intmail.prod.int.phx2.redhat.com (8.14.4/8.14.4) with ESMTP id
 r7MAjZ3m028506; Thu, 22 Aug 2013 06:45:36 -0400
Message-ID: <5215EC4F.1090405@redhat.com>
Date: Thu, 22 Aug 2013 16:17:43 +0530
From: Huzaifa Sidhpurwala <huzaifas@redhat.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64;
 rv:17.0) Gecko/20130805 Thunderbird/17.0.8
MIME-Version: 1.0
To: oss-security@lists.openwall.com
Subject: Re: [oss-security] FreeBSD Security Advisory FreeBSD-SA-13:10.sctp
References: <201308220115.r7M1Fea3001317@freefall.freebsd.org>
 <86txiighrr.fsf@nine.des.no>
In-Reply-To: <86txiighrr.fsf@nine.des.no>
X-Enigmail-Version: 1.5.2
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-Scanned-By: MIMEDefang 2.68 on 10.5.11.23
X-Mailman-Approved-At: Thu, 22 Aug 2013 11:42:00 +0000
Cc: =?UTF-8?B?RGFnLUVybGluZyBTbcO4cmdyYXY=?= <des@des.no>,
 freebsd-security@freebsd.org
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Aug 2013 10:53:22 -0000

On 08/22/2013 03:38 PM, Dag-Erling Smørgrav wrote:
> This also affects third-party software (Firefox, at the very least) that
> incorporates FreeBSD's SCTP implementation.
> 

Are you sure about this?
i did not find anything in the Mozilla code!


-- 
Huzaifa Sidhpurwala / Red Hat Security Response Team