From owner-freebsd-security@FreeBSD.ORG Wed Jan 28 22:46:29 2015 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id A3398326 for ; Wed, 28 Jan 2015 22:46:29 +0000 (UTC) Received: from mail.as41113.net (mail.as41113.net [91.208.177.22]) by mx1.freebsd.org (Postfix) with ESMTP id 658EDDF3 for ; Wed, 28 Jan 2015 22:46:29 +0000 (UTC) Received: from [172.21.88.60] (cpc6-staf8-2-0-cust519.3-1.cable.virginm.net [82.16.54.8]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: lists@rewt.org.uk) by mail.as41113.net (Postfix) with ESMTPSA id 3kXg0M41F7z1N2W6 for ; Wed, 28 Jan 2015 22:46:27 +0000 (GMT) Message-ID: <54C966BF.9000803@rewt.org.uk> Date: Wed, 28 Jan 2015 22:46:23 +0000 From: Joe Holden User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.4.0 MIME-Version: 1.0 To: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-15:02.kmem References: <20150128194011.2175B19F@hub.freebsd.org> <20150128211910.80082283DA18@rock.dv.isc.org> In-Reply-To: <20150128211910.80082283DA18@rock.dv.isc.org> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 28 Jan 2015 22:46:29 -0000 Really, how many SCTP users are there om the wild... maybe one? It shouldn't be in GENERIC at the very least! On 28/01/2015 21:19, Mark Andrews wrote: > > In message <20150128194011.2175B19F@hub.freebsd.org>, "Roger Marquis" writes: >>>> If SCTP is NOT compiled in the kernel, are you still vulnerable ? >>> >>> No -- we should have mentioned that too. For GENERIC kernel however >>> SCTP is compiled in. >> >> Should probably fix that too, in GENERIC, considering how little used this >> protocol is. > > It is not used much because there is not critical mass and you want > to reduce what little there is out there? It is a good thing that > it is in GENERIC. > > Mark > >> Roger Marquis >> >> _______________________________________________ >> freebsd-security@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-security >> To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"