deadsimple BSD Security Advisories and Announcements

MidnightBSD 1.2.10

New security update for MidnightBSD.


udf: Validate the full file entry length

Otherwise a corrupted file entry containing invalid extended attribute
lengths or allocation descriptor lengths can trigger an overflow when
the file entry is loaded.

Discovered by:
C Turt <>

Lucas Holt
________________________________________________________ (Free OS) (Free blogging)

Midnightbsd-security mailing list