On Mon, Apr 24, 2023 at 04:18:00PM -0700, Cy Schubert wrote:
> In message <[email protected]>, Konstantin
> Belous
> ov writes:
> > The branch main has been updated by kib:
> >
> > URL:
> > https://cgit.FreeBSD.org/src/commit/?id=a718431c30a57226bc7c1a9181fc84ba
> > b00641a1
> >
> > commit a718431c30a57226bc7c1a9181fc84bab00641a1
> > Author: Konstantin Belousov <[email protected]>
> > AuthorDate: 2023-04-23 23:21:42 +0000
> > Commit: Konstantin Belousov <[email protected]>
> > CommitDate: 2023-04-24 21:32:10 +0000
> >
> > lookup(): ensure that openat("/", "..", O_RESOLVE_BENEATH) fails
> >
> > PR: 269780
> > Reported by: Dan Gohman <[email protected]>
> > Reviewed by: emaste, markj
> > Sponsored by: The FreeBSD Foundation
> > MFC after: 1 week
> > Differential revision: https://reviews.freebsd.org/D39773
>
> Should this also require a CVE number?
I do not see why.
