Date: Mon, 21 Jun 2004 09:55:15 +0700 (OMSST) From: <aquatique-ports@rambler.ru> To: FreeBSD-gnats-submit@FreeBSD.org Cc: krion@FreeBSD.org Subject: ports/68161: fix DoS (http://www.securityfocus.com/archive/1/366486) Message-ID: <20040621025515.B802D1CE253@rusunix.org> Resent-Message-ID: <200406210300.i5L30kT3056260@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 68161 >Category: ports >Synopsis: fix DoS (http://www.securityfocus.com/archive/1/366486) >Confidential: no >Severity: serious >Priority: high >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: maintainer-update >Submitter-Id: current-users >Arrival-Date: Mon Jun 21 03:00:46 GMT 2004 >Closed-Date: >Last-Modified: >Originator: Evgueni V. Gavrilov >Release: FreeBSD 4.10-RELEASE i386 >Organization: rusunix.org >Environment: System: FreeBSD rusunix.org 4.10-RELEASE FreeBSD 4.10-RELEASE #0: Thu May 27 18:47:13 OMSST 2004 root@rusunix.org:/usr/obj/usr/src/sys/NEWMONSTER i386 >Description: fix DoS (http://www.securityfocus.com/archive/1/366486) >How-To-Repeat: patch < >Fix: diff -ruN ircd-hybrid-ru.orig/files/patch-src-packet.c ircd-hybrid-ru/files/patch-src-packet.c --- ircd-hybrid-ru.orig/files/patch-src-packet.c Thu Jan 1 06:00:00 1970 +++ ircd-hybrid-ru/files/patch-src-packet.c Mon Jun 21 09:45:24 2004 @@ -0,0 +1,11 @@ +--- src/packet.c.orig Mon Jun 21 09:43:24 2004 ++++ src/packet.c Mon Jun 21 09:44:15 2004 +@@ -467,7 +467,7 @@ + parse_client_queued(client_p); + + /* Check to make sure we're not flooding */ +- if (IsPerson(client_p) && ++ if (!(IsServer(client_p) || IsHandshake(client_p) || IsConnecting(client_p)) && + (dbuf_length(&client_p->localClient->buf_recvq) > + (unsigned int)ConfigFileEntry.client_flood)) + { >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040621025515.B802D1CE253>