Date: Mon, 14 Feb 2005 16:36:03 +0000 From: Colin Percival <cperciva@freebsd.org> To: Gleb Smirnoff <glebius@FreeBSD.org>, Xin LI <delphij@FreeBSD.org>, re@freebsd.org Cc: cvs-all@FreeBSD.org Subject: Re: cvs commit: src/sys/net if.c Message-ID: <4210D373.5090801@freebsd.org> In-Reply-To: <20050214072648.GA51832@cell.sick.ru> References: <200502140542.j1E5g62l077236@repoman.freebsd.org> <20050214072648.GA51832@cell.sick.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
Gleb Smirnoff wrote: > On Mon, Feb 14, 2005 at 05:42:06AM +0000, Xin LI wrote: > X> Modified files: (Branch: RELENG_5) > X> sys/net if.c > X> Log: > X> MFC 1.218+1.219: > X> > X> Validate ifc->ifc_len before submitting its incarnation to sbuf_new, > X> which will finally lead to kernel panic. > X> > X> Security: This prevents a local DoS that can be exploited by > X> Security: both privileged and unprivileged users. > > Is it going to be put into RELENG_5_3? /me deletes the email he wrote to delphij while he was offline. Local DoS doesn't count as a security vulnerability, but it certainly counts as an errata. delphij, could you coordinate with re@ about turning this into FreeBSD-EN-05:04.if ? Colin Percival
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4210D373.5090801>