cvs commit: src/sys/net/sppp if_spppsubr.c

Joerg Sonnenberger joerg at crater.dragonflybsd.org
Wed Aug 23 13:47:04 PDT 2006


joerg       2006/08/23 13:45:29 PDT

DragonFly src repository

  Modified files:        (Branch: DragonFly_RELEASE_1_6)
    sys/net/sppp         if_spppsubr.c 
  Log:
  MFC 1.24:
  Merge rev 1.96 of NetBSD's net/if_spppsubr.c:
    A problem has been identified in the in-kernel PPP code shared by ISDN PPP
    interfaces ippp(4) and pppoe(4). Insufficient checking of options presented
    by the peer may cause writing of copies of the malicious input beyond the
    end of a buffer allocated for that purpose.
  
    Issue found by pavel@
    Fix from martin@
  
    This is SA2006-019 (CVE-2006-4304)
  
  Revision  Changes    Path
  1.23.2.1  +114 -9    src/sys/net/sppp/if_spppsubr.c


http://www.dragonflybsd.org/cvsweb/src/sys/net/sppp/if_spppsubr.c.diff?r1=1.23&r2=1.23.2.1&f=u





More information about the Commits mailing list