ViewVC Help
| View Changeset | Root Listing
root/src
Jump to revision: Previous Next
Author: laffer1
Date: Thu Aug 22 11:55:32 2013 UTC (10 years, 8 months ago)
Log Message: 
0.4-RELEASE-p2

Fix two security vulnerabilities.

Fix an integer overflow in IP_MSFILTER (IP MULTICAST). This could be exploited to read memory by a user process.

When initializing the SCTP state cookie being sent in INIT-ACK chunks,
a buffer allocated from the kernel stack is not completely initialized.

Patches obtained from: FreeBSD

Changed paths

Path Details
Directorybranches/RELENG_0_4/UPDATING modified , text changed , props changed
Directorybranches/RELENG_0_4/sys/conf/newvers.sh modified , text changed , props changed
Directorybranches/RELENG_0_4/sys/netinet/in_mcast.c modified , text changed , props changed
Directorybranches/RELENG_0_4/sys/netinet/sctp_output.c modified , text changed , props changed
Directorybranches/RELENG_0_4/sys/netinet6/in6_mcast.c modified , text changed , props changed