FreeBSD Arbitrary FFS Filesystem Data Block Access Vulnerability Solution:
The vulnerability cannot be exploited on systems with a 16k blocksize when a process has a file size resource limit (RLIMIT_FSIZE) of 63 MB or less. Users are advised to edit '/etc/login.conf' and edit the field entry, ':filesize' to the following: ':filesize=63m:\'. After making the change to /etc/login.conf, the capability database must be rebuilt with the following command: 'cap_mkdb'
Users are advised to apply the following patch or to upgrade systems to RELENG_4, RELENG_4_6, RELENG_4_5, or RELENG_4_4 CVS branches:
FreeBSD FreeBSD 4.0
FreeBSD FreeBSD 4.1
FreeBSD FreeBSD 4.1.1 -RELEASE
FreeBSD FreeBSD 4.1.1 -STABLE
FreeBSD FreeBSD 4.1.1
FreeBSD FreeBSD 4.2 -RELEASE
FreeBSD FreeBSD 4.2
FreeBSD FreeBSD 4.2 -STABLE
FreeBSD FreeBSD 4.3
FreeBSD FreeBSD 4.3 -RELEASE
FreeBSD FreeBSD 4.3 -RELENG
FreeBSD FreeBSD 4.3 -STABLE
FreeBSD FreeBSD 4.4
FreeBSD FreeBSD 4.4 -STABLE
FreeBSD FreeBSD 4.4 -RELENG
FreeBSD FreeBSD 4.5 -STABLE
FreeBSD FreeBSD 4.5
FreeBSD FreeBSD 4.5 -RELEASE
FreeBSD FreeBSD 4.6
FreeBSD FreeBSD 4.6 -RELEASE
FreeBSD FreeBSD 4.6 -STABLE
