svn commit: r286027 - in head/sys: netinet sys
Shawn Webb
shawn.webb at hardenedbsd.org
Wed Jul 29 18:43:43 UTC 2015
On Wednesday, 29 July 2015 05:59:14 PM Patrick Kelsey wrote:
> Author: pkelsey
> Date: Wed Jul 29 17:59:13 2015
> New Revision: 286027
> URL: https://svnweb.freebsd.org/changeset/base/286027
>
> Log:
> Revert r265338, r271089 and r271123 as those changes do not handle
> non-inline urgent data and introduce an mbuf exhaustion attack vector
> similar to FreeBSD-SA-15:15.tcp, but not requiring VNETs.
>
> Address the issue described in FreeBSD-SA-15:15.tcp.
>
> Reviewed by: glebius
> Approved by: so
> Approved by: jmallett (mentor)
> Security: FreeBSD-SA-15:15.tcp
> Sponsored by: Norse Corp, Inc.
Does this commit need to be MFC'd to stable/10? Or is this only for HEAD?
Thanks,
--
Shawn Webb
HardenedBSD
GPG Key ID: 0x6A84658F52456EEE
GPG Key Fingerprint: 2ABA B6BD EF6A F486 BE89 3D9E 6A84 658F 5245 6EEE
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.freebsd.org/pipermail/svn-src-head/attachments/20150729/32ee91bb/attachment.bin>
More information about the svn-src-head
mailing list