From owner-freebsd-security Wed May 19 13:39:38 1999 Delivered-To: freebsd-security@freebsd.org Received: from rover.village.org (rover.village.org [204.144.255.49]) by hub.freebsd.org (Postfix) with ESMTP id 40EC614CF2 for ; Wed, 19 May 1999 13:39:35 -0700 (PDT) (envelope-from imp@harmony.village.org) Received: from harmony.village.org (harmony.village.org [10.0.0.6]) by rover.village.org (8.9.3/8.9.3) with ESMTP id OAA63615; Wed, 19 May 1999 14:38:27 -0600 (MDT) (envelope-from imp@harmony.village.org) Received: from harmony.village.org (localhost.village.org [127.0.0.1]) by harmony.village.org (8.9.3/8.8.3) with ESMTP id OAA01429; Wed, 19 May 1999 14:38:19 -0600 (MDT) Message-Id: <199905192038.OAA01429@harmony.village.org> To: Brett Glass Subject: Re: Is 3.2-R safe? Cc: security@FreeBSD.ORG In-reply-to: Your message of "Tue, 18 May 1999 11:09:12 MDT." <4.2.0.37.19990518110133.00b58da0@localhost> References: <4.2.0.37.19990518110133.00b58da0@localhost> Date: Wed, 19 May 1999 14:38:19 -0600 From: Warner Losh Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In message <4.2.0.37.19990518110133.00b58da0@localhost> Brett Glass writes: : Just saw the announcement of 3.2-R. We'd been planning to migrate : some of our systems to this version, but before we install, we need : to know: Has the "double free" problem that causes the system to : crash under a SYN flood attack been fixed? I don't recall a "fix" for this going into -current, let alone -stable. It all came to light very late in the 3.2 game, and no body posted a good patch, as far as I can recall. The one patch that was posted was panned as being bad. I had planned on setting up a 3.2R system to see if this, and a small list of other problems, has been fixed or not. Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message