From owner-freebsd-hackers@FreeBSD.ORG  Fri Jan  7 23:14:09 2005
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 7F9F016A4CE
	for <freebsd-hackers@freebsd.org>;
	Fri,  7 Jan 2005 23:14:09 +0000 (GMT)
Received: from pisces.lunarpages.com (pisces.lunarpages.com [64.235.234.123])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 66A0443D1F
	for <freebsd-hackers@freebsd.org>;
	Fri,  7 Jan 2005 23:14:09 +0000 (GMT)	(envelope-from sean@node99.org)
Received: from c-24-23-60-128.client.comcast.net ([24.23.60.128]
	helo=[192.168.1.101])	by pisces.lunarpages.com with esmtp (Exim 4.43)
	id 1Cn3J2-0004G4-PP
	for freebsd-hackers@freebsd.org; Fri, 07 Jan 2005 15:14:08 -0800
Message-ID: <41DF17C2.9060801@node99.org>
Date: Fri, 07 Jan 2005 15:14:10 -0800
From: Sean Whalen <sean@node99.org>
User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: freebsd-hackers@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-AntiAbuse: This header was added to track abuse, please include it with any
	abuse report
X-AntiAbuse: Primary Hostname - pisces.lunarpages.com
X-AntiAbuse: Original Domain - freebsd.org
X-AntiAbuse: Originator/Caller UID/GID - [0 0] / [47 12]
X-AntiAbuse: Sender Address Domain - node99.org
X-Source: 
X-Source-Args: 
X-Source-Dir: 
Subject: Potential user/kernel pointer bugs in FreeBSD 5.3
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 07 Jan 2005 23:14:09 -0000

Hello,

We recently did work with the Cqual type inference tool to identify 
potential user/kernel pointer bugs in FreeBSD 5.3.  Our paper is 
available here: http://www.node99.org/projects/bsduk/

We identified 5 potential bugs which we are looking to confirm with the 
community.  Page 10 contains an example of one such candidate.  More 
true positives may be identified by using a machine with 10 or more gigs 
of RAM for inter-file analysis of the entire kernel.  If interested, 
please email me.

Best,
	-Sean