iDefense Security Advisory 10.10.06: FreeBSD ptrace PT_LWPINFO
Denial of Service Vulnerability
Harald Muehlboeck
home at clef.at
Sat Oct 14 01:09:39 PDT 2006
Colin Percival <cperciva at freebsd.org> writes:
>> "The policy of the FreeBSD Security Team is that local denial of service
>> bugs not be treated as security issues; it is possible that this problem
>> will be corrected in a future Erratum."
>
> If there was any potential for
> (a) privilege escalation,
> (b) disclosure of potentially sensitive information, or
> (c) denial of service by a non-authenticated attacker,
> we would have issued a security advisory.
I am missing this information on <http://www.freebsd.org/security/>.
The site does not say wich bugs are treated as security issue and
which are not. Perhaps these three points above can be added to the
website.
More information about the freebsd-security
mailing list