cvs commit: src/sys/net if.c
cperciva at freebsd.org
Mon Feb 14 16:36:07 GMT 2005
Gleb Smirnoff wrote:
> On Mon, Feb 14, 2005 at 05:42:06AM +0000, Xin LI wrote:
> X> Modified files: (Branch: RELENG_5)
> X> sys/net if.c
> X> Log:
> X> MFC 1.218+1.219:
> X> Validate ifc->ifc_len before submitting its incarnation to sbuf_new,
> X> which will finally lead to kernel panic.
> X> Security: This prevents a local DoS that can be exploited by
> X> Security: both privileged and unprivileged users.
> Is it going to be put into RELENG_5_3?
/me deletes the email he wrote to delphij while he was offline.
Local DoS doesn't count as a security vulnerability, but it certainly
counts as an errata. delphij, could you coordinate with re@ about
turning this into FreeBSD-EN-05:04.if ?
More information about the cvs-all