[Midnightbsd-cvs] [MidnightBSD/src] 689d6d: initialize vars in ipfw
Lucas Holt
noreply at github.com
Tue Dec 1 16:54:50 EST 2020
Branch: refs/heads/stable/2.0
Home: https://github.com/MidnightBSD/src
Commit: 689d6d00090f8c0052d99a9cdba4a6c1aeb2e777
https://github.com/MidnightBSD/src/commit/689d6d00090f8c0052d99a9cdba4a6c1aeb2e777
Author: Lucas Holt <luke at foolishgames.com>
Date: 2020-12-01 (Tue, 01 Dec 2020)
Changed paths:
M sbin/ipfw/dummynet.c
M sbin/ipfw/ipfw2.c
M sbin/ipfw/nat64lsn.c
M sbin/ipfw/tables.c
Log Message:
-----------
initialize vars in ipfw
Commit: 8ba2654e7dee5d0c3e51631c025c60c76cf2dc16
https://github.com/MidnightBSD/src/commit/8ba2654e7dee5d0c3e51631c025c60c76cf2dc16
Author: Lucas Holt <luke at foolishgames.com>
Date: 2020-12-01 (Tue, 01 Dec 2020)
Changed paths:
M sys/netinet6/icmp6.c
Log Message:
-----------
When an ICMPv6 error message is received, the BSD ICMPv6 stack may
extract information from the message to hand to upper-layer protocols. As a
part of this operation, it may parse IPv6 header options from a packet
embedded in the ICMPv6 message.
The handler for a routing option caches a pointer into the packet buffer
holding the ICMPv6 message. However, when processing subsequent options the
packet buffer may be freed, rendering the cached pointer invalid. The
network stack may later dereference the pointer, potentially triggering a
use-after-free.
Obtained from: FreeBSD
Compare: https://github.com/MidnightBSD/src/compare/086d7198852c...8ba2654e7dee
More information about the Midnightbsd-cvs
mailing list