Date: Mon, 14 Feb 2005 10:33:31 +0100 From: "Simon L. Nielsen" <simon@FreeBSD.org> To: Gleb Smirnoff <glebius@freebsd.org> Cc: cvs-all@freebsd.org Subject: Re: cvs commit: src/sys/net if.c Message-ID: <20050214093330.GA737@arthur.nitro.dk> In-Reply-To: <20050214072648.GA51832@cell.sick.ru> References: <200502140542.j1E5g62l077236@repoman.freebsd.org> <20050214072648.GA51832@cell.sick.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
--VS++wcV0S1rZb1Fb Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On 2005.02.14 10:26:48 +0300, Gleb Smirnoff wrote: > On Mon, Feb 14, 2005 at 05:42:06AM +0000, Xin LI wrote: > X> delphij 2005-02-14 05:42:06 UTC > X>=20 > X> FreeBSD src repository > X>=20 > X> Modified files: (Branch: RELENG_5) > X> sys/net if.c=20 > X> Log: > X> MFC 1.218+1.219: > X> =20 > X> Validate ifc->ifc_len before submitting its incarnation to sbuf_new, > X> which will finally lead to kernel panic. > X> =20 > X> Security: This prevents a local DoS that can be exploited by > X> Security: both privileged and unprivileged users. > X> Submitted by: Wojciech A. Koszek [dunstan at freebsd czest pl] > X> PR: 77421 > X> =20 > X> Early MFC discussed with and reviewed by: > X> security (simon, trhodes) >=20 > Is it going to be put into RELENG_5_3? Since we don't issue security advisories for local DoS'es I don't think so, but it's not my call. --=20 Simon L. Nielsen --VS++wcV0S1rZb1Fb Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFCEHBqh9pcDSc1mlERAl01AJ4g0AqABIaUjFIfDhqSQrTY6gClEwCcCImO yF8W44g95hVLJMh+4HJgZAI= =DMKa -----END PGP SIGNATURE----- --VS++wcV0S1rZb1Fb--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050214093330.GA737>