Module Name: src
Committed By: bouyer
Date: Tue Mar 22 20:03:05 UTC 2011
Modified Files:
src/doc [netbsd-5-0]: CHANGES-5.0.3
Log Message:
ticket 1571
To generate a diff of this commit:
cvs rdiff -u -r1.1.2.30 -r1.1.2.31 src/doc/CHANGES-5.0.3
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: src/doc/CHANGES-5.0.3
diff -u src/doc/CHANGES-5.0.3:1.1.2.30 src/doc/CHANGES-5.0.3:1.1.2.31
--- src/doc/CHANGES-5.0.3:1.1.2.30 Sun Mar 20 21:33:41 2011
+++ src/doc/CHANGES-5.0.3 Tue Mar 22 20:03:04 2011
@@ -1,4 +1,4 @@
-# $NetBSD: CHANGES-5.0.3,v 1.1.2.30 2011/03/20 21:33:41 bouyer Exp $
+# $NetBSD: CHANGES-5.0.3,v 1.1.2.31 2011/03/22 20:03:04 bouyer Exp $
A complete list of changes from the NetBSD 5.0.2 release to the NetBSD 5.0.3
release:
@@ -2602,3 +2602,13 @@
Reported by Maksymilian Arciemowicz
[spz, ticket #1574]
+sys/net/bpf_filter.c 1.36, 1.42 -> 1.46 via patch
+
+ Avoid stack memory disclosure by keeping track during filter
+ validation time of initialized memory. Idea taken from linux.
+ the correct check for BPF_K is with BPF_SRC for BPF_ALU ops, from
+ Guy Harris per PR kern/43185
+ fixes possible division-by-zero crashes by evil filter expressions
+ like "len / 0 = 1"
+ [spz, ticket #1571]
+
