|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Robert Watson (rwatson
FreeBSD.org)
Date: Thu Mar 15 2007 - 06:02:24 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Wed, 14 Mar 2007, Eygene Ryabinkin wrote:
> Just spotted the new advisory from CORE:
> http://www.securityfocus.com/archive/1/462728/30/0/threaded Not an
> expert, but FreeBSD's src/sys/kern/uipc_mbuf2.c has the very simular code.
>
> Robert, anyone, could you please check?
Eygene,
Sorry for the delayed response on this -- I've only just returned from Tokyo
in the last day and am significantly behind in e-mail from the trip.
According to a source analysis by Jinmei, we are not vulnerable, but I will
continue tracking the thread. Apparently this vulnerability involved an issue
in the handling of M_EXT, and our implementation of clusters differs
significantly from OpenBSD, so it seems likely we are not affected. If we
discover any information to the contrary, you can be sure that we will get it
fixed and release an advisory!
Robert N M Watson
Computer Laboratory
University of Cambridge
_______________________________________________
freebsd-securityfreebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribefreebsd.org"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]