cvs commit: src UPDATING src/sys/netinet if_ether.c src/sys/conf newvers.sh

Bruce M Simpson bms at FreeBSD.org
Tue Sep 23 13:08:43 PDT 2003


bms         2003/09/23 13:08:43 PDT

  FreeBSD src repository

  Modified files:        (Branch: RELENG_5_1)
    .                    UPDATING 
    sys/netinet          if_ether.c 
    sys/conf             newvers.sh 
  Log:
  Fix a bug in arplookup(), whereby a hostile party on a locally
  attached network could exhaust kernel memory, and cause a system
  panic, by sending a flood of spoofed ARP requests.
  
  Approved by:    security-officer, jake (mentor)
  Reported by:    Apple Product Security <product-security at apple.com>
  
  Revision   Changes    Path
  1.251.2.7  +5 -0      src/UPDATING
  1.50.2.8   +1 -1      src/sys/conf/newvers.sh
  1.104.2.1  +14 -6     src/sys/netinet/if_ether.c


More information about the cvs-src mailing list