Date: Thu, 1 Nov 2018 11:03:44 -0700 From: Gordon Tetlow <gordon@tetlows.org> To: syed khalid <0xsyed@gmail.com> Cc: freebsd-security@freebsd.org Subject: Re: Regarding CVE-2018-4407 Message-ID: <20181101180344.GO6768@gmail.com> In-Reply-To: <CAERAQ8eDToyUuCa7T_MwqKXtXRPkB_3GK=_0r366qzKo_9uj4g@mail.gmail.com> References: <CAERAQ8eDToyUuCa7T_MwqKXtXRPkB_3GK=_0r366qzKo_9uj4g@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--QnBU6tTI9sljzm9u Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Oct 31, 2018 at 04:17:36PM +0530, syed khalid wrote: > Hello All, >=20 > There is kernel RCE caused by a buffer overflow in Apple ICMP's > packet-handling code. The PoC is not available but the bug details are > mentioned here in https://lgtm.com/blog/apple_xnu_icmp_error_CVE-2018-440= 7. > Will this vulnerability affects FreeBSD? Please let me know your thoughts I've exchanged a couple of emails with the researchers and they have confirmed the PoC they wrote for MacOS doesn't work on FreeBSD. Further code analysis looks like we have some bounds checking in place that probably didn't exist in the MacOS code. All that said, I've asked a couple of networking stack folks to take a look at it further. I'll report if anything changes with that assessment. Regards, Gordon Tetlow FreeBSD Security Officer --QnBU6tTI9sljzm9u Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQGTBAABCgB9FiEEuyjUCzYO7pNq7RVv5fe8y6O93fgFAlvbQABfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEJC MjhENDBCMzYwRUVFOTM2QUVEMTU2RkU1RjdCQ0NCQTNCRERERjgACgkQ5fe8y6O9 3fjVEggAkUnAZ5wooB075cZrbcoyMO9kfUlVZ+t1LhBifkQ2S64R5vd/VojKdAqd +bd9TEvwssC77qmI9IBMSlG+J3IpI+j5Pdr9ePfBtIWZpOxS+EM6PmiWU+NjBM9c Leu9Lxu6kHr41GF0MB0KX+SY+QI8bRyZAsHh5c+/koxE+G4wspj7lz9nVjIeBZRL N9NAOwHSaoZTw5j10b8HVUb7la3bDO1j8IKjUqdbsH8TpNwR1PwdC/dqmwUIaNIi UHcdTTj5WcbVFM76rQotnzlBGP/iL8V7ksWsgDTsAjsj76/kqexJsxirrfxcG1R5 DFQzFDEH8UQruX0Hwrmp1GdRelyGbw== =oYOI -----END PGP SIGNATURE----- --QnBU6tTI9sljzm9u--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20181101180344.GO6768>