cvs commit: src/sys/net/sppp if_spppsubr.c
Joerg Sonnenberger
joerg at crater.dragonflybsd.org
Wed Aug 23 13:47:04 PDT 2006
joerg 2006/08/23 13:45:29 PDT
DragonFly src repository
Modified files: (Branch: DragonFly_RELEASE_1_6)
sys/net/sppp if_spppsubr.c
Log:
MFC 1.24:
Merge rev 1.96 of NetBSD's net/if_spppsubr.c:
A problem has been identified in the in-kernel PPP code shared by ISDN PPP
interfaces ippp(4) and pppoe(4). Insufficient checking of options presented
by the peer may cause writing of copies of the malicious input beyond the
end of a buffer allocated for that purpose.
Issue found by pavel@
Fix from martin@
This is SA2006-019 (CVE-2006-4304)
Revision Changes Path
1.23.2.1 +114 -9 src/sys/net/sppp/if_spppsubr.c
http://www.dragonflybsd.org/cvsweb/src/sys/net/sppp/if_spppsubr.c.diff?r1=1.23&r2=1.23.2.1&f=u
More information about the Commits
mailing list