From owner-freebsd-security  Thu Dec 14 22:28:10 2000
From owner-freebsd-security@FreeBSD.ORG  Thu Dec 14 22:28:08 2000
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from citusc.usc.edu (citusc.usc.edu [128.125.38.123])
	by hub.freebsd.org (Postfix) with ESMTP id 4831637B400
	for <security@FreeBSD.ORG>; Thu, 14 Dec 2000 22:28:08 -0800 (PST)
Received: (from kris@localhost)
	by citusc.usc.edu (8.9.3/8.9.3) id WAA02135;
	Thu, 14 Dec 2000 22:27:42 -0800
Date: Thu, 14 Dec 2000 22:27:42 -0800
From: Kris Kennaway <kris@FreeBSD.ORG>
To: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
Cc: John Howie <JHowie@msn.com>, security@FreeBSD.ORG
Subject: Re: procfs vulnerability (Re: Details of www.freebsd.org penetration)
Message-ID: <20001214222742.C2040@citusc.usc.edu>
References: <20001214082814.A25963@citusc.usc.edu> <200012142108.eBEL8wo04627@cwsys.cwsent.com>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="oJ71EGRlYNjSvfq7"
Content-Disposition: inline
User-Agent: Mutt/1.2i
In-Reply-To: <200012142108.eBEL8wo04627@cwsys.cwsent.com>; from Cy.Schubert@uumail.gov.bc.ca on Thu, Dec 14, 2000 at 01:08:47PM -0800
Sender: kris@citusc.usc.edu
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


--oJ71EGRlYNjSvfq7
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

On Thu, Dec 14, 2000 at 01:08:47PM -0800, Cy Schubert - ITSD Open Systems Group wrote:

> Has the fix been committed?  If so, is it procfs_ctl.c 1.22?

Several fixes have been committed to -stable, the remaining problem
was fixed in -current probably in that CVS revision, but when I last
checked my commit mail it hadn't been fixed in 4.x (Robert has a
different patch which will be committed shortly, because of 5.0/4.x
differences)

Kris

--oJ71EGRlYNjSvfq7
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE6ObnbWry0BWjoQKURAt96AJ9T1RBveOWK4VtC1dlmpdP1csI2JACdFWJF
dz7t0V6Q+P6dySQnCLhZF50=
=LsMU
-----END PGP SIGNATURE-----

--oJ71EGRlYNjSvfq7--


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message