Subject: Re: NetBSD Security Advisory 1999-008
To: matthew green <mrg@eterna.com.au>
From: Philip Tait <Philip.Tait@phxase.allied.com>
List: port-pmax
Date: 04/15/1999 10:16:20
This advisory does not seem to be accurate. 'syssrc.tgz' for NetBSD 1.3.3 contains
what appears to be a corrected version of vfs_lookup.c. Also, I cannot reproduce
the problem on my system:
$ uname -a
NetBSD phxtst45 1.3.3 NetBSD 1.3.3 (GENERIC) #0: Sat Dec 12 15:08:02 EST 1998
root@vlad:/usr/src/sys/arch/pmax/compile/GENERIC pmax
$ ln -s ./ test
$ ls -l test
lrwxr-xr-x 1 pjt wheel 2 Apr 15 10:12 test -> ./
matthew green wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
>
> NetBSD Security Advisory 1999-008
> =================================
>
> Topic: Kernel hang or panic in name lookup under certain circumstances
> Version: NetBSD 1.3.X, NetBSD-current to 19990409, and
> early versions of NetBSD-1.4_ALPHA
> Severity: In later versions of -current and in 1.4_ALPHA, unprivileged
> users can panic the system.
>
> Abstract
> ========
>
> Unprivileged users can trigger a file-system locking error, causing the
> system to panic or hang. The following command sequence will trigger
> the vulnerability:
>
> % ln -s ./ test
> % ln -s ./ test
[...patch details...]
--
Philip J. Tait.....AlliedSignal Engines, Phoenix, Az.....pjt@phxase.allied.com