|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Kris Kennaway (kris
obsecurity.org)Date: Fri Sep 07 2001 - 15:44:27 CDT
On Fri, Sep 07, 2001 at 12:09:39PM -0400, Rob Simmons wrote:
> Is FreeBSD affected by either of the new vulnerabilities NetBSD just
> released, 2001-015 and 2001-016?
>
> 2001-015 = "Insufficient checking of lengths passed from userland to
> kernel."
I don't know about this one.. we may be. Someone will have to look
into it.
> 2001-016 = "unsafe chdir usage in fts(3)."
We fixed that one several months ago..they even credit us in the advisory.
Kris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (FreeBSD)
Comment: For info see http://www.gnupg.org
iD8DBQE7mTGqWry0BWjoQKURAnSJAJ9xpFQ+zOXLqCX68n2HXacfmNZFUgCdEO6u
ratoPAA4Fwc/LLX0o68S5oY=
=c7XR
-----END PGP SIGNATURE-----
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]