From owner-freebsd-security@FreeBSD.ORG  Fri Mar 18 05:27:03 2005
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 1E9EC16A4CE; Fri, 18 Mar 2005 05:27:03 +0000 (GMT)
Received: from VARK.MIT.EDU (VARK.MIT.EDU [18.95.3.179])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id A4F5943D5A; Fri, 18 Mar 2005 05:27:02 +0000 (GMT)
	(envelope-from das@FreeBSD.ORG)
Received: from VARK.MIT.EDU (localhost [127.0.0.1])
	by VARK.MIT.EDU (8.13.3/8.13.1) with ESMTP id j2I5QvP3040555;
	Fri, 18 Mar 2005 00:26:57 -0500 (EST)
	(envelope-from das@FreeBSD.ORG)
Received: (from das@localhost)
	by VARK.MIT.EDU (8.13.3/8.13.1/Submit) id j2I5QuWb040554;
	Fri, 18 Mar 2005 00:26:56 -0500 (EST)
	(envelope-from das@FreeBSD.ORG)
Date: Fri, 18 Mar 2005 00:26:56 -0500
From: David Schultz <das@FreeBSD.ORG>
To: Colin Percival <cperciva@FreeBSD.ORG>
Message-ID: <20050318052656.GA40243@VARK.MIT.EDU>
Mail-Followup-To: Colin Percival <cperciva@FreeBSD.ORG>,
	Timothy Smith <timothy@open-networks.net>,
	freebsd-security@FreeBSD.ORG
References: <423A1842.4050603@open-networks.net>
	<423A19B2.7000602@freebsd.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <423A19B2.7000602@freebsd.org>
cc: Timothy Smith <timothy@open-networks.net>
cc: freebsd-security@FreeBSD.ORG
Subject: Re: no patch, is there a problem
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Mar 2005 05:27:03 -0000

On Thu, Mar 17, 2005, Colin Percival wrote:
> Timothy Smith wrote:
> > http://www.securityfocus.com/bid/12825/info/
> > 
> > no patch or anything, is there any action on this?
> 
> We're not affected.  The problem is in copyoutstr(),
> which doesn't exist in FreeBSD.
> 
> I've sent an email to securityfocus advising them of
> this.

It exists on FreeBSD/alpha because it was blindly copied from
NetBSD.  However, we don't use it, and it appears to do proper
validation anyway.

I'm not sure whether the bugtraq submitter is intentionally
spreading FUD or just lazy; the assertion that we do ``no
validation'' in copyout is patently false.  It seems that someone
just copied a list of all FreeBSD CVS branches without actually
looking at the source or contacting security@freebsd.org.  Sigh.