UFS Bug: FreeBSD 6.1/6.2/7.0: MOKB-08-11-2006, CVE-2006-5824,
MOKB-03-11-2006, CVE-2006-5679
Scott Long
scottl at samsco.org
Fri Nov 24 14:58:51 PST 2006
David Malone wrote:
>>These two bugs are shown for FreeBSD only and I guess, Solaris and other
>>BSDs still use UFS. Are they more robust against this exploit or type
>>of exploit?
>
>
> I don't know of a concerted effort by anyone to improve UFS in this
> way. I would guess that the odd bug would have been resolved, but
> no large scale work.
>
> David.
Another thing to keep in mind is that filesystem mounting is only
available to the super-user. If a feature came along such as
automatically mounting USB drives, these bugs would indeed be critical.
But for now, they are not.
Scott
More information about the freebsd-stable
mailing list