Date: Sun, 18 Oct 1998 13:34:48 -0700 (PDT) From: Archie Cobbs <archie@whistle.com> To: luigi@labinfo.iet.unipi.it (Luigi Rizzo) Cc: net@FreeBSD.ORG Subject: Re: (minor, possibly irrelevant) security problem ? Message-ID: <199810182034.NAA09621@bubba.whistle.com> In-Reply-To: <199810180614.HAA03365@labinfo.iet.unipi.it> from Luigi Rizzo at "Oct 18, 98 07:14:02 am"
next in thread | previous in thread | raw e-mail | index | archive | help
Luigi Rizzo writes: > probably not very important at all, but if i am not mistaken, > looking at the "ed" sources, i noticed that for short (< 60 bytes) > packets, the driver does not bother to fill the remaining part of > the packet with 0's but instead just bumps up the length. This > potentially sends out bytes from previous packets to a destination > that is not the intended one. > > Is this something to worry about fixing (and possibly investigate other > drivers if they do the same) ? I'd say it's not a big deal but yes, technically is a security hole. Probably you'd get a debate from the optimization camp, but I'd say it should be fixed to zero out those bytes. -Archie ___________________________________________________________________________ Archie Cobbs * Whistle Communications, Inc. * http://www.whistle.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199810182034.NAA09621>