Date: Wed, 29 Jun 2005 21:38:48 +0000 (UTC) From: "Simon L. Nielsen" <simon@FreeBSD.org> To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/contrib/bzip2 bzip2.c bzlib.c compress.c decompress.c huffman.c src/sys/netinet ip_fw2.c tcp_input.c Message-ID: <200506292138.j5TLcmAu046389@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
simon 2005-06-29 21:38:48 UTC
FreeBSD src repository (doc,ports committer)
Modified files: (Branch: RELENG_5)
contrib/bzip2 bzip2.c bzlib.c compress.c decompress.c
huffman.c
sys/netinet ip_fw2.c tcp_input.c
Log:
Correct ipfw packet matching errors with address tables.
Security: CAN-2005-2019
Security: FreeBSD-SA-05:13.ipfw
Correct bzip2 denial of service and permission race vulnerabilities.
Obtained from: Redhat, Steve Grubb via RedHat
Security: CAN-2005-0953, CAN-2005-1260
Security: FreeBSD-SA-05:14.bzip2
Approved by: obrien
Correct TCP connection stall denial of service vulnerability.
A TCP packets with the SYN flag set is accepted for established
connections, allowing an attacker to overwrite certain TCP options.
Security: CAN-2005-2068
Security: FreeBSD-SA-05:15.tcp
Approved by: cperciva
Revision Changes Path
1.1.1.2.8.1 +34 -9 src/contrib/bzip2/bzip2.c
1.1.1.2.8.1 +37 -14 src/contrib/bzip2/bzlib.c
1.1.1.2.8.1 +7 -5 src/contrib/bzip2/compress.c
1.1.1.2.8.1 +11 -5 src/contrib/bzip2/decompress.c
1.1.1.2.8.1 +18 -1 src/contrib/bzip2/huffman.c
1.70.2.14 +20 -17 src/sys/netinet/ip_fw2.c
1.252.2.20 +1 -1 src/sys/netinet/tcp_input.c
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200506292138.j5TLcmAu046389>