From owner-cvs-all@FreeBSD.ORG Tue Sep 23 13:07:07 2003 Return-Path: Delivered-To: cvs-all@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7028316A4B3; Tue, 23 Sep 2003 13:07:07 -0700 (PDT) Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115]) by mx1.FreeBSD.org (Postfix) with ESMTP id CFA9C43FBD; Tue, 23 Sep 2003 13:07:06 -0700 (PDT) (envelope-from bms@FreeBSD.org) Received: from repoman.freebsd.org (localhost [127.0.0.1]) by repoman.freebsd.org (8.12.9/8.12.9) with ESMTP id h8NK76XJ061533; Tue, 23 Sep 2003 13:07:06 -0700 (PDT) (envelope-from bms@repoman.freebsd.org) Received: (from bms@localhost) by repoman.freebsd.org (8.12.9/8.12.9/Submit) id h8NK76dt061532; Tue, 23 Sep 2003 13:07:06 -0700 (PDT) (envelope-from bms) Message-Id: <200309232007.h8NK76dt061532@repoman.freebsd.org> From: Bruce M Simpson Date: Tue, 23 Sep 2003 13:07:06 -0700 (PDT) To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org X-FreeBSD-CVS-Branch: RELENG_5_0 Subject: cvs commit: src UPDATING src/sys/netinet if_ether.c src/sys/conf newvers.sh X-BeenThere: cvs-all@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: CVS commit messages for the entire tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 23 Sep 2003 20:07:07 -0000 bms 2003/09/23 13:07:06 PDT FreeBSD src repository Modified files: (Branch: RELENG_5_0) . UPDATING sys/netinet if_ether.c sys/conf newvers.sh Log: Fix a bug in arplookup(), whereby a hostile party on a locally attached network could exhaust kernel memory, and cause a system panic, by sending a flood of spoofed ARP requests. Approved by: security-officer, jake (mentor) Reported by: Apple Product Security Revision Changes Path 1.229.2.21 +5 -0 src/UPDATING 1.48.2.16 +1 -1 src/sys/conf/newvers.sh 1.96.2.1 +14 -6 src/sys/netinet/if_ether.c