From owner-cvs-all@FreeBSD.ORG Tue Sep 23 09:52:46 2003 Return-Path: Delivered-To: cvs-all@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9AC7A16A4B3; Tue, 23 Sep 2003 09:52:46 -0700 (PDT) Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2DC9443FF7; Tue, 23 Sep 2003 09:52:46 -0700 (PDT) (envelope-from bms@FreeBSD.org) Received: from repoman.freebsd.org (localhost [127.0.0.1]) by repoman.freebsd.org (8.12.9/8.12.9) with ESMTP id h8NGqjXJ044640; Tue, 23 Sep 2003 09:52:45 -0700 (PDT) (envelope-from bms@repoman.freebsd.org) Received: (from bms@localhost) by repoman.freebsd.org (8.12.9/8.12.9/Submit) id h8NGqjUG044639; Tue, 23 Sep 2003 09:52:45 -0700 (PDT) (envelope-from bms) Message-Id: <200309231652.h8NGqjUG044639@repoman.freebsd.org> From: Bruce M Simpson Date: Tue, 23 Sep 2003 09:52:45 -0700 (PDT) To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org X-FreeBSD-CVS-Branch: RELENG_4_4 Subject: cvs commit: src UPDATING src/sys/netinet if_ether.c src/sys/conf newvers.sh X-BeenThere: cvs-all@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: CVS commit messages for the entire tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 23 Sep 2003 16:52:46 -0000 bms 2003/09/23 09:52:45 PDT FreeBSD src repository Modified files: (Branch: RELENG_4_4) . UPDATING sys/netinet if_ether.c sys/conf newvers.sh Log: Fix a bug in arplookup(), whereby a hostile party on a locally attached network could exhaust kernel memory, and cause a system panic, by sending a flood of spoofed ARP requests. Approved by: security-officer, jake (mentor) Reported by: Apple Product Security Revision Changes Path 1.73.2.43.2.51 +5 -0 src/UPDATING 1.44.2.17.2.42 +1 -1 src/sys/conf/newvers.sh 1.64.2.11.2.1 +15 -7 src/sys/netinet/if_ether.c