Date: Tue, 26 Apr 2016 14:34:20 -0700 From: Ngie Cooper <yaneurabeya@gmail.com> To: Shawn Webb <shawn.webb@hardenedbsd.org> Cc: Kristof Provost <kp@freebsd.org>, "src-committers@freebsd.org" <src-committers@freebsd.org>, "svn-src-all@freebsd.org" <svn-src-all@freebsd.org>, "svn-src-head@freebsd.org" <svn-src-head@freebsd.org>, secteam@freebsd.org Subject: Re: svn commit: r298664 - head/sys/fs/msdosfs Message-ID: <CAGHfRMDAuZnvJa%2BJq7A%2B9=%2BGnsjuBJsQAnvRqMrPVj1BJVNzNA@mail.gmail.com> In-Reply-To: <20160426212648.GC13055@mutt-hardenedbsd> References: <201604262036.u3QKaWto038435@repo.freebsd.org> <20160426210138.GA13055@mutt-hardenedbsd> <2190C480-1B7A-47F8-BFB4-D7C8E6F25385@FreeBSD.org> <20160426211804.GB13055@mutt-hardenedbsd> <116F3C09-CD22-42EC-80BF-4EAD6CA1C824@FreeBSD.org> <20160426212648.GC13055@mutt-hardenedbsd>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Apr 26, 2016 at 2:26 PM, Shawn Webb <shawn.webb@hardenedbsd.org> wrote: > On Tue, Apr 26, 2016 at 11:22:32PM +0200, Kristof Provost wrote: >> >> > On 26 Apr 2016, at 23:18, Shawn Webb <shawn.webb@hardenedbsd.org> wrote: >> > Was secteam@ even involved, then? Seems like a user-facing kernel buffer >> > overflow ought to have involved secteam@. >> > >> No, it wasn???t. This bug had been open for quite a while, and I just happend to see the report and look at it. > > Now CC'ing secteam@. I'm wondering if a CVE should be filed. Or, at the > very least, a FreeBSD Security Advisory. I've CCed secteam on the bug and added "security" to the keywords. Thanks, -Ngie
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAGHfRMDAuZnvJa%2BJq7A%2B9=%2BGnsjuBJsQAnvRqMrPVj1BJVNzNA>