cvs commit: src UPDATING src/sys/netinet if_ether.c src/sys/conf newvers.sh

Bruce M Simpson bms at FreeBSD.org
Tue Sep 23 09:54:41 PDT 2003


bms         2003/09/23 09:54:39 PDT

  FreeBSD src repository

  Modified files:        (Branch: RELENG_4_3)
    .                    UPDATING 
    sys/netinet          if_ether.c 
    sys/conf             newvers.sh 
  Log:
  Fix a bug in arplookup(), whereby a hostile party on a locally
  attached network could exhaust kernel memory, and cause a system
  panic, by sending a flood of spoofed ARP requests.
  
  Approved by:    security-officer, jake (mentor)
  Reported by:    Apple Product Security <product-security at apple.com>
  
  Revision        Changes    Path
  1.73.2.28.2.38  +5 -0      src/UPDATING
  1.44.2.14.2.28  +1 -1      src/sys/conf/newvers.sh
  1.64.2.10.2.1   +15 -7     src/sys/netinet/if_ether.c


More information about the cvs-src mailing list