K 10
svn:author
V 2
bz
K 8
svn:date
V 27
2009-11-16T20:34:53.614602Z
K 7
svn:log
V 804
As we pass the 'offset' unvalidated to vn_rdwr() make sure
that it is unsigned rather than possibly set to something negative
by a malicious binary.

This is just the immediate fix to the problem mentioned in
PR kern/80742 and by http://milw0rm.com/exploits/9206 but does
not fix all possible problems imgact_pecoff has.

As this feature does not work and is not compiled in by default,
the security team considers this vulnerability to be of low risk
to the user population and will not be issuing an advisory.

Note that this is a direct commit to stable/7 as pecoff support has
been removed from head and stable/8 already.

PR:		kern/80742
Reported by:	Oliver Pinter (oliver.pntr gmail.com) via freebsd-security
Help reproducing and testing by: Damian Weber (dweber htw-saarland.de)
MFC After:	3 days

END