| From: | "Simon 'corecode' Schubert" <corecode@xxxxxxxxxxxx> |
| Date: | Fri, 6 May 2005 13:57:31 +0200 |
FYI: I just committed a fix for FreeBSD-SA-05:08.kmem[1] to DEVELOPMENT. Everybody is advised to cvsup and recompile the kernel. The fix will appear in RELEASE 1.2 soon, too. cheers simon [1] http://lists.freebsd.org/pipermail/freebsd-security-notifications/2005-May/000045.html ---------- Forwarded Message ---------- Subject: cvs commit: src/sys/kern vfs_subr.c src/sys/net if_mib.c src/sys/netinet in_pcb.c Date: Friday, 6. May 2005 13:52 From: Simon Schubert <corecode@xxxxxxxxxxxxxxxxxxxxxxx> corecode 2005/05/06 04:52:02 PDT DragonFly src repository Modified files: sys/kern vfs_subr.c sys/net if_mib.c sys/netinet in_pcb.c Log: Bring in fix from FreeBSD/cperciva: Log: If we are going to 1. Copy a NULL-terminated string into a fixed-length buffer, and 2. copyout that buffer to userland, we really ought to 0. Zero the entire buffer first. Security: FreeBSD-SA-05:08.kmem Thanks to Colin Percival for notifying us! Revision Changes Path 1.56 +1 -0 src/sys/kern/vfs_subr.c 1.5 +1 -0 src/sys/net/if_mib.c 1.35 +1 -0 src/sys/netinet/in_pcb.c http://www.dragonflybsd.org/cvsweb/src/sys/kern/vfs_subr.c.diff?r1=1.55&r 2=1.56&f=u http://www.dragonflybsd.org/cvsweb/src/sys/net/if_mib.c.diff?r1=1.4&r2=1 .5&f=u http://www.dragonflybsd.org/cvsweb/src/sys/netinet/in_pcb.c.diff?r1=1.34 &r2=1.35&f=u ------------------------------------------------------- -- Serve - BSD +++ RENT this banner advert +++ ASCII Ribbon /"\ Work - Mac +++ space for low $$$ NOW!1 +++ Campaign \ / Party Enjoy Relax | http://dragonflybsd.org Against HTML \ Dude 2c 2 the max ! http://golden-apple.biz Mail + News / \
Attachment:
pgp00002.pgp
Description: PGP signature