Date: Fri, 24 Nov 2006 15:58:39 -0700 From: Scott Long <scottl@samsco.org> To: David Malone <dwmalone@maths.tcd.ie> Cc: FreeBSD Stable <freebsd-stable@freebsd.org>, "O. Hartmann" <ohartman@zedat.fu-berlin.de> Subject: Re: UFS Bug: FreeBSD 6.1/6.2/7.0: MOKB-08-11-2006, CVE-2006-5824, MOKB-03-11-2006, CVE-2006-5679 Message-ID: <4567791F.9070102@samsco.org> In-Reply-To: <200611242042.aa66912@boole.maths.tcd.ie> References: <200611242042.aa66912@boole.maths.tcd.ie>
next in thread | previous in thread | raw e-mail | index | archive | help
David Malone wrote: >>These two bugs are shown for FreeBSD only and I guess, Solaris and other >>BSDs still use UFS. Are they more robust against this exploit or type >>of exploit? > > > I don't know of a concerted effort by anyone to improve UFS in this > way. I would guess that the odd bug would have been resolved, but > no large scale work. > > David. Another thing to keep in mind is that filesystem mounting is only available to the super-user. If a feature came along such as automatically mounting USB drives, these bugs would indeed be critical. But for now, they are not. Scott
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4567791F.9070102>