svn commit: r298664 - head/sys/fs/msdosfs
Conrad Meyer
cem at FreeBSD.org
Tue Apr 26 21:17:33 UTC 2016
On Tue, Apr 26, 2016 at 2:13 PM, Adrian Chadd <adrian.chadd at gmail.com> wrote:
> You mean "hotplug mount a malicious USB disk via some installed
> graphical enviornment?"
>
> NOone does that... :)
Sure, but there the vulnerability is (IMO) that users are allowed to
arbitrarily mount stuff. That's a huge attack surface and this fix
only scratches the surface.
We do need to make filesystems more resilient to malice. AFL?
Best,
Conrad
More information about the svn-src-all
mailing list