From owner-freebsd-security Mon Aug 19 10: 2:17 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E320A37B400 for ; Mon, 19 Aug 2002 10:02:13 -0700 (PDT) Received: from elvis.mu.org (elvis.mu.org [192.203.228.196]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7CEB543E70 for ; Mon, 19 Aug 2002 10:02:13 -0700 (PDT) (envelope-from bright@elvis.mu.org) Received: by elvis.mu.org (Postfix, from userid 1192) id 570DBAE1EE; Mon, 19 Aug 2002 10:02:13 -0700 (PDT) Date: Mon, 19 Aug 2002 10:02:13 -0700 From: Alfred Perlstein To: Brad Laue Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-02:38.signed-error Message-ID: <20020819170213.GE75574@elvis.mu.org> References: <200208191256.g7JCuNAd018797@freefall.freebsd.org> <3D611737.4010803@brad-x.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3D611737.4010803@brad-x.com> User-Agent: Mutt/1.3.27i Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org * Brad Laue [020819 09:05] wrote: > FreeBSD Security Advisories wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > > > > > ============================================================================= > > FreeBSD-SA-02:38.signed-error Security > Advisory > > The FreeBSD > Project > > > > Topic: Boundary checking errors involving signed integers > > This might be an obtuse question, but I'm going to risk it and ask anyway. > > Given that accept(2) and getpeername(2) are vulnerable one would think > this were remotely exploitable, but I'm not familiar enough to say this > for certain. > > Is this a remotely exploitable issue, or only local? Local only. It doesn't have to deal with how the kernel processes network data, only how the kernel processes user arguements. -- -Alfred Perlstein [alfred@freebsd.org] [#bsdcode/efnet/irc.prison.net] 'Instead of asking why a piece of software is using "1970s technology," start asking why software is ignoring 30 years of accumulated wisdom.' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message