From owner-freebsd-security@freebsd.org Tue Jun 20 12:26:53 2017 Return-Path: Delivered-To: freebsd-security@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 621ADD977F7 for ; Tue, 20 Jun 2017 12:26:53 +0000 (UTC) (envelope-from spankthespam@gmail.com) Received: from mail-qk0-x236.google.com (mail-qk0-x236.google.com [IPv6:2607:f8b0:400d:c09::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 1C7017FAB1 for ; Tue, 20 Jun 2017 12:26:53 +0000 (UTC) (envelope-from spankthespam@gmail.com) Received: by mail-qk0-x236.google.com with SMTP id r62so55988940qkf.0 for ; Tue, 20 Jun 2017 05:26:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=wJvVd8NYXhuXCb9OqZQuDhpMGWAOUqDrIUoSTwo1esw=; b=W5Qi6fhh9RuTvn/rUo7J/CH72Dym73yYZJs/FVjQuV3qSgfayIfNEhC/C9jr/t3bfr Ov7G5FcNsOF+OjdH4DlgbwIHtdRrB2SyvsYU/DY0VOTyU+cA+wnx/b1PIYBeo11EfCeH o7smMOtXO6B9rZRjEVzo+BEbZPcgyazI1h8CkpiK/2RADqzm4u83Ax4cqIMtYC9LZ00q DXJGtSCtoSyoflYV3AUEYJsySxYOj0DwPPRAcGMMcl7CDKU+XSDbb5B+Cl2H8rz3DXCt pWUyX8DjMToPZIuBtTY012d2SCusgeaKJVSovMQEfdsJ1ZNZuUJGpp7ViJjEZBDCmM9Q tL/Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=wJvVd8NYXhuXCb9OqZQuDhpMGWAOUqDrIUoSTwo1esw=; b=VT+7jWKt1cL8ATBKp3bL5s2ngzlvybyNo0ub0QScDOj1a+OAm8A5Lg0F8L0dTuB4Bc 4FIX3YaFAreeVtgFjZYeF/dBBK9v6BectRVtXGuAqP7DO9p4RH+K0irvYhXOy5DbAq2s aaTk0VFYplX/Ju/jlHmYj4i3YT2ws1c3u+yO8j1T+ROJazLMichNa+ny4KFcQ31ErF6g N749U54Q39UsuZNmN94WDMlKXMZbk/YzETD9YKManIIj+/5Hga1E9SVn7RwlhmY3XaAP s/lM9s45L+aJ6aWIB+DUDvCwmzTF4szjZetzwKQ19QPoyflnk+RAul4aIVKyuc+RM/9X mgMg== X-Gm-Message-State: AKS2vOwXDCHG6CENl8SafRDwZ0MooBZ/7Wm7qljYspfJgJtJJ00OdxvB fRZ7jBuQLgFH4moBI/F4njzKBbgIrw== X-Received: by 10.55.198.156 with SMTP id s28mr3993059qkl.222.1497961612295; Tue, 20 Jun 2017 05:26:52 -0700 (PDT) MIME-Version: 1.0 Received: by 10.200.8.51 with HTTP; Tue, 20 Jun 2017 05:26:51 -0700 (PDT) In-Reply-To: References: From: Big Lebowski Date: Tue, 20 Jun 2017 13:26:51 +0100 Message-ID: Subject: Re: The Stack Clash vulnerability To: Vladimir Terziev Cc: "freebsd-security@freebsd.org" Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.23 X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Jun 2017 12:26:53 -0000 Funny enough, we had that covered for a short while, at least better than it is now: https://www.mail-archive.com/svn-src-all@freebsd.org/msg141063.html On Tue, Jun 20, 2017 at 9:13 AM, Vladimir Terziev wrote: > Hi, > > I assume FreeBSD security team is already aware about the Stack Clash > vulnerability, that is stated to affect FreeBSD amongst other Unix-like OS. > > Just in case here is the analyses document of Qualys: > > https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt > > > Regards, > > Vladimir > > _______________________________________________ > freebsd-security@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org > " >