Return to errata30.html CVS log | Up to [local] / www |
version 1.27, 2002/08/11 17:22:38 | version 1.28, 2002/08/11 21:01:28 | ||
---|---|---|---|
|
|
||
<li><font color=#009000><strong>031: SECURITY FIX: August 11, 2002</strong></font><br> | <li><font color=#009000><strong>031: SECURITY FIX: August 11, 2002</strong></font><br> | ||
An insufficient boundary check in the | An insufficient boundary check in the | ||
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=select&sektion=2">select(2)</a> | <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=select&sektion=2">select(2)</a> | ||
and | system call allows an attacker to overwrite kernel memory and execute arbitrary | ||
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=poll&sektion=2">poll(2)</a> | |||
system calls allows an attacker to overwrite kernel memory and execute arbitrary | |||
code in kernel context.<br> | code in kernel context.<br> | ||
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.0/common/031_scarg.patch">A | <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.0/common/031_scarg.patch">A | ||
source code patch exists which remedies the problem</a>. | source code patch exists which remedies the problem</a>. |