Date: Sun, 22 May 2022 09:00:42 +0000 From: bugzilla-noreply@freebsd.org To: pf@FreeBSD.org Subject: =?UTF-8?B?W0J1ZyAyNjQxMjhdIE91dC1vZi1ib3VuZHMgcmVhZCBpbiBwZmN0?= =?UTF-8?B?bCg4KSB3aGVuIHJ1biB3aXRoIC1hIOKAnOKAnSAoYXMgaW4g4oCccGVyaW9k?= =?UTF-8?B?aWMgZGFpbHnigJ0pLg==?= Message-ID: <bug-264128-16861-1Wy4SzlAuW@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-264128-16861@https.bugs.freebsd.org/bugzilla/> References: <bug-264128-16861@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D264128 --- Comment #1 from commit-hook@FreeBSD.org --- A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/src/commit/?id=3D298663855015c1eba7ccf5b88168f4336= 53eb609 commit 298663855015c1eba7ccf5b88168f433653eb609 Author: Jessica Clarke <jrtc27@FreeBSD.org> AuthorDate: 2022-05-22 08:31:42 +0000 Commit: Kristof Provost <kp@FreeBSD.org> CommitDate: 2022-05-22 08:31:42 +0000 pfctl: fix out-of-bounds access If pfctl is called with "pfctl -a ''" we read outside of the anchoropt buffer. Check that the buffer is sufficiently long to avoid that. Maintain the existing (and desired, because it's used as such in /etc/periodic/security/520.pfdenied) behaviour of treating "-a ''" as a request for the root anchor (or no anchor specified). PR: 264128 Reviewed by: kp sbin/pfctl/pfctl.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-264128-16861-1Wy4SzlAuW>