76d3f5f676
The ipfw tables lookup code caches the result of the last query. The kernel may process multiple packets concurrently, performing several concurrent table lookups. Due to an insufficient locking, a cached result can become corrupted that could cause some addresses to be incorrectly matched against a lookup table. Submitted by: ru Reviewed by: csjp, mlaier Security: CAN-2005-2019 Security: FreeBSD-SA-05:13.ipfw Correct bzip2 permission race condition vulnerability. Obtained from: Steve Grubb via RedHat Security: CAN-2005-0953 Security: FreeBSD-SA-05:14.bzip2 Approved by: obrien Correct TCP connection stall denial of service vulnerability. A TCP packets with the SYN flag set is accepted for established connections, allowing an attacker to overwrite certain TCP options. Submitted by: Noritoshi Demizu Reviewed by: andre, Mohan Srinivasan Security: CAN-2005-2068 Security: FreeBSD-SA-05:15.tcp Approved by: re (security blanket), cperciva |
||
|---|---|---|
| .. | ||
| amd | ||
| bc | ||
| bind9 | ||
| binutils | ||
| bsnmp | ||
| bzip2 | ||
| com_err | ||
| cpio | ||
| cvs | ||
| diff | ||
| expat | ||
| file | ||
| gcc | ||
| gdb | ||
| gdtoa | ||
| gnu-sort | ||
| gperf | ||
| groff | ||
| hostapd | ||
| ipfilter | ||
| less | ||
| libbegemot | ||
| libf2c | ||
| libobjc | ||
| libpcap | ||
| libreadline | ||
| libstdc++ | ||
| lukemftp | ||
| lukemftpd | ||
| ncurses | ||
| netcat | ||
| ngatm | ||
| ntp | ||
| nvi | ||
| one-true-awk | ||
| openpam | ||
| opie | ||
| pam_modules/pam_passwdqc | ||
| pf | ||
| pnpinfo | ||
| sendmail | ||
| smbfs | ||
| tar | ||
| tcp_wrappers | ||
| tcpdump | ||
| tcsh | ||
| telnet | ||
| texinfo | ||
| top | ||
| traceroute | ||
| wpa_supplicant | ||