K 10
svn:author
V 2
bz
K 8
svn:date
V 27
2009-11-23T11:52:20.820243Z
K 7
svn:log
V 779
MF7 r199330:
  Note: this change was never in head; thus directly merged from stable/7.

  As we pass the 'offset' unvalidated to vn_rdwr() make sure
  that it is unsigned rather than possibly set to something negative
  by a malicious binary.

  This is just the immediate fix to the problem mentioned in
  PR kern/80742 and by http://milw0rm.com/exploits/9206 but does
  not fix all possible problems imgact_pecoff has.

  As this feature does not work and is not compiled in by default,
  the security team considers this vulnerability to be of low risk
  to the user population and will not be issuing an advisory.

PR:		kern/80742
Reported by:	Oliver Pinter (oliver.pntr gmail.com) via freebsd-security
Help reproducing and testing by: Damian Weber (dweber htw-saarland.de)

END