[Midnightbsd-cvs] src: sys/netinet: Fix two security vulnerabilities.
laffer1 at midnightbsd.org
laffer1 at midnightbsd.org
Thu Aug 22 07:49:37 EDT 2013
Log Message:
-----------
Fix two security vulnerabilities.
Fix an integer overflow in IP_MSFILTER (IP MULTICAST). This could be exploited to read memory by a user process.
When initializing the SCTP state cookie being sent in INIT-ACK chunks,
a buffer allocated from the kernel stack is not completely initialized.
Patches obtained from: FreeBSD
Modified Files:
--------------
src/sys/netinet:
in_mcast.c (r1.5 -> r1.6)
(http://cvsweb.midnightbsd.org/src/sys/netinet/in_mcast.c?r1=1.5&r2=1.6)
sctp_output.c (r1.5 -> r1.6)
(http://cvsweb.midnightbsd.org/src/sys/netinet/sctp_output.c?r1=1.5&r2=1.6)
src/sys/netinet6:
in6_mcast.c (r1.2 -> r1.3)
(http://cvsweb.midnightbsd.org/src/sys/netinet6/in6_mcast.c?r1=1.2&r2=1.3)
More information about the Midnightbsd-cvs
mailing list