From owner-cvs-all@FreeBSD.ORG  Mon Feb 14 16:36:06 2005
Return-Path: <owner-cvs-all@FreeBSD.ORG>
Delivered-To: cvs-all@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E686116A4D8
	for <cvs-all@freebsd.org>; Mon, 14 Feb 2005 16:36:06 +0000 (GMT)
Received: from tx3.mail.ox.ac.uk (tx3.mail.ox.ac.uk [163.1.2.167])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 62B9543D1D
	for <cvs-all@freebsd.org>; Mon, 14 Feb 2005 16:36:06 +0000 (GMT)
	(envelope-from cperciva@freebsd.org)
Received: from scan3.mail.ox.ac.uk ([163.1.2.166] helo=localhost)
	by tx3.mail.ox.ac.uk with esmtp (Exim 4.42)
	id 1D0jCf-0003EH-C8
	for cvs-all@freebsd.org; Mon, 14 Feb 2005 16:36:05 +0000
Received: from rx3.mail.ox.ac.uk ([163.1.2.165])
 by localhost (scan3.mail.ox.ac.uk [163.1.2.166]) (amavisd-new, port 25)
 with ESMTP id 11155-10 for <cvs-all@freebsd.org>;
 Mon, 14 Feb 2005 16:36:05 +0000 (GMT)
Received: from smtp0.herald.ox.ac.uk ([163.1.0.246])
	by rx3.mail.ox.ac.uk with esmtp (Exim 4.42)
	id 1D0jCe-0003DW-Ai; Mon, 14 Feb 2005 16:36:04 +0000
Received: from dhcp1041.wadham.ox.ac.uk ([163.1.161.41])
	by smtp0.herald.ox.ac.uk with esmtp (Exim 3.35 #1)
	id 1D0jCe-0005Ax-3y; Mon, 14 Feb 2005 16:36:04 +0000
Message-ID: <4210D373.5090801@freebsd.org>
Date: Mon, 14 Feb 2005 16:36:03 +0000
From: Colin Percival <cperciva@freebsd.org>
User-Agent: Mozilla Thunderbird 1.0 (X11/20050113)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Gleb Smirnoff <glebius@FreeBSD.org>,
	Xin LI <delphij@FreeBSD.org>, re@freebsd.org
References: <200502140542.j1E5g62l077236@repoman.freebsd.org>
	<20050214072648.GA51832@cell.sick.ru>
In-Reply-To: <20050214072648.GA51832@cell.sick.ru>
X-Enigmail-Version: 0.89.5.0
X-Enigmail-Supports: pgp-inline, pgp-mime
Content-Type: text/plain; charset=KOI8-R; format=flowed
Content-Transfer-Encoding: 7bit
cc: cvs-src@FreeBSD.org
cc: src-committers@FreeBSD.org
cc: cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/sys/net if.c
X-BeenThere: cvs-all@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: CVS commit messages for the entire tree <cvs-all.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-all>
List-Post: <mailto:cvs-all@freebsd.org>
List-Help: <mailto:cvs-all-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 14 Feb 2005 16:36:07 -0000

Gleb Smirnoff wrote:
> On Mon, Feb 14, 2005 at 05:42:06AM +0000, Xin LI wrote:
> X>   Modified files:        (Branch: RELENG_5)
> X>     sys/net              if.c 
> X>   Log:
> X>   MFC 1.218+1.219:
> X>   
> X>   Validate ifc->ifc_len before submitting its incarnation to sbuf_new,
> X>   which will finally lead to kernel panic.
> X>   
> X>   Security:       This prevents a local DoS that can be exploited by
> X>   Security:       both privileged and unprivileged users.
> 
> Is it going to be put into RELENG_5_3?

/me deletes the email he wrote to delphij while he was offline.

Local DoS doesn't count as a security vulnerability, but it certainly
counts as an errata.  delphij, could you coordinate with re@ about
turning this into FreeBSD-EN-05:04.if ?

Colin Percival