Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Thread Tools Display Modes
  #1   (View Single Post)  
Old 28th October 2009
J65nko J65nko is offline
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,508
Default OpenBSD Reliability Fix: kernel NULL pointer dereference in getsockopt()

From http://undeadly.org:
A bug has been found in the IPsec parts of ip_output.c that can lead to NULL pointer dereference in getsockopt(). On kernels from before 4.4, this could lead to a local privilege escalation on certain architectures. The currently supported releases, however, protect against this by no longer allowing userland to map the NULL page in the kernel, reducing the attack to a local Denial of Service by panicking the kernel.

Patches are available for OpenBSD 4.6 (patch, errata), OpenBSD 4.5 (patch, errata) and OpenBSD 4.4 (patch, errata). Of course, the patches are already available in -current, the commit message for the IPv4 case can be found below, the IPv6 and commit is nearly identical. This issue affects all architectures.
See http://www.openbsd.org/errata46.html#003_getsockopt for the patches.
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Hard disk reliability ephemera General Hardware 32 20th April 2010 10:17 AM
c++: writing to the *this pointer? robbak Programming 2 23rd October 2009 06:12 PM
kernel file from 6.3 to 7.2 l2fl2f FreeBSD Installation and Upgrading 3 14th September 2009 06:53 PM
kernel version 0?? Stellar OpenBSD General 5 30th August 2009 11:07 PM
kernel not found isamu FreeBSD Installation and Upgrading 13 24th October 2008 12:24 AM

All times are GMT. The time now is 08:20 AM.

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2019, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick