Date: Sun, 04 Jan 2015 13:32:07 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-bugs@FreeBSD.org Subject: [Bug 196483] [patch] change vfs_setopt{,_part}(...)'s len parameter to fix possible DoS Message-ID: <bug-196483-8@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=196483 Bug ID: 196483 Summary: [patch] change vfs_setopt{,_part}(...)'s len parameter to fix possible DoS Product: Base System Version: 10.1-STABLE Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: kern Assignee: freebsd-bugs@FreeBSD.org Reporter: op@freebsd.org Created attachment 151321 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=151321&action=edit 0001-HBSD-change-vfs_setopt-_part-.-s-len-type-to-check-b.patch The bcopy(...) expected size_t (aka unsigned) len parameter, but in vfs_setopt{,_part}(...) the len parameter is signed, which will cause possible DoS in some scenarios. After this change, the vfs_setopt{,_part}(...) function properly checks the constraints. -- You are receiving this mail because: You are the assignee for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-196483-8>