Date: Tue, 23 Sep 2003 09:44:59 -0700 (PDT) From: Bruce M Simpson <bms@FreeBSD.org> To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src UPDATING src/sys/netinet if_ether.c src/sys/conf newvers.sh Message-ID: <200309231644.h8NGix7A044092@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
bms 2003/09/23 09:44:59 PDT
FreeBSD src repository
Modified files: (Branch: RELENG_4_8)
. UPDATING
sys/netinet if_ether.c
sys/conf newvers.sh
Log:
Fix a bug in arplookup(), whereby a hostile party on a locally
attached network could exhaust kernel memory, and cause a system
panic, by sending a flood of spoofed ARP requests.
Approved by: security-officer, jake (mentor)
Reported by: Apple Product Security <product-security@apple.com>
Revision Changes Path
1.73.2.80.2.10 +5 -0 src/UPDATING
1.44.2.29.2.9 +1 -1 src/sys/conf/newvers.sh
1.64.2.22.2.1 +14 -6 src/sys/netinet/if_ether.c
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200309231644.h8NGix7A044092>