From 3d68723716bfa0987b31777ec7ab2c4cb4bd7030 Mon Sep 17 00:00:00 2001
From: bms <bms@FreeBSD.org>
Date: Tue, 23 Sep 2003 16:39:31 +0000
Subject: Fix a bug in arplookup(), whereby a hostile party on a locally
 attached network could exhaust kernel memory, and cause a system panic, by
 sending a flood of spoofed ARP requests.

Approved by:	jake (mentor)
Reported by:	Apple Product Security <product-security@apple.com>
---
 UPDATING | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'UPDATING')

diff --git a/UPDATING b/UPDATING
index 92b0467..608152f 100644
--- a/UPDATING
+++ b/UPDATING
@@ -17,6 +17,12 @@ NOTE TO PEOPLE WHO THINK THAT 5.0-CURRENT IS SLOW:
 	developers choose to disable these features on build machines
 	to maximize performance.
 
+20030923:
+	Fix a bug in arplookup(), whereby a hostile party on a locally
+	attached network could exhaust kernel memory, and cause a system 
+	panic, by sending a flood of spoofed ARP requests. See
+	FreeBSD-SA-03:14.arp.
+
 20030915:
 	A change to /etc/defaults/rc.conf now causes inetd to be started
 	with `-C 60' if it is not overridden in /etc/rc.conf.  This
-- 
cgit v1.1