Re: iDefense Security Advisory 10.10.06: FreeBSD ptrace PT_LWPINFO Denial of Service Vulnerability
- From: Harald Muehlboeck <home@xxxxxxx>
- Date: Sat, 14 Oct 2006 10:12:11 +0200
Colin Percival <cperciva@xxxxxxxxxxx> writes:
"The policy of the FreeBSD Security Team is that local denial of service
bugs not be treated as security issues; it is possible that this problem
will be corrected in a future Erratum."
If there was any potential for
(a) privilege escalation,
(b) disclosure of potentially sensitive information, or
(c) denial of service by a non-authenticated attacker,
we would have issued a security advisory.
I am missing this information on <http://www.freebsd.org/security/>.
The site does not say wich bugs are treated as security issue and
which are not. Perhaps these three points above can be added to the
website.
_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"
- References:
- Prev by Date: Re: [fbsd] HEADS UP: FreeBSD 5.3, 5.4, 6.0 EoLs coming soon
- Next by Date: Re: Proposal: MAC_BIBA and real-world usage
- Previous by thread: Re: iDefense Security Advisory 10.10.06: FreeBSD ptrace PT_LWPINFO Denial of Service Vulnerability
- Next by thread: I cannot upgrade openssl-stablr
- Index(es):
Relevant Pages
|
|
