From owner-cvs-all@FreeBSD.ORG Tue Sep 23 09:49:47 2003 Return-Path: Delivered-To: cvs-all@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 26FBC16A4B3; Tue, 23 Sep 2003 09:49:47 -0700 (PDT) Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9E36543F93; Tue, 23 Sep 2003 09:49:46 -0700 (PDT) (envelope-from bms@FreeBSD.org) Received: from repoman.freebsd.org (localhost [127.0.0.1]) by repoman.freebsd.org (8.12.9/8.12.9) with ESMTP id h8NGnkXJ044344; Tue, 23 Sep 2003 09:49:46 -0700 (PDT) (envelope-from bms@repoman.freebsd.org) Received: (from bms@localhost) by repoman.freebsd.org (8.12.9/8.12.9/Submit) id h8NGnkC4044343; Tue, 23 Sep 2003 09:49:46 -0700 (PDT) (envelope-from bms) Message-Id: <200309231649.h8NGnkC4044343@repoman.freebsd.org> From: Bruce M Simpson Date: Tue, 23 Sep 2003 09:49:46 -0700 (PDT) To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org X-FreeBSD-CVS-Branch: RELENG_4_6 Subject: cvs commit: src UPDATING src/sys/netinet if_ether.c src/sys/conf newvers.sh X-BeenThere: cvs-all@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: CVS commit messages for the entire tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 23 Sep 2003 16:49:47 -0000 bms 2003/09/23 09:49:46 PDT FreeBSD src repository Modified files: (Branch: RELENG_4_6) . UPDATING sys/netinet if_ether.c sys/conf newvers.sh Log: Fix a bug in arplookup(), whereby a hostile party on a locally attached network could exhaust kernel memory, and cause a system panic, by sending a flood of spoofed ARP requests. Approved by: security-officer, jake (mentor) Reported by: Apple Product Security Revision Changes Path 1.73.2.68.2.49 +5 -0 src/UPDATING 1.44.2.23.2.38 +1 -1 src/sys/conf/newvers.sh 1.64.2.18.2.1 +14 -6 src/sys/netinet/if_ether.c