• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

FreeBSD Ptrace/SPIgot Insufficient Signal Verification Denial of Service Vulnerability

Solution:
FreeBSD has released patches to address this issue in affected releases. Users are advised to apply the patches as soon as possible. After applying the following patches, the FreeBSD kernel must be recompiled for the changes to take affect.

Please see the attached advisory for further details on the specific FreeBSD versions applicable to each patch.


FreeBSD FreeBSD 4.3

• FreeBSD signal47.patch
  ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:09/signal47.patch

FreeBSD FreeBSD 4.4

• FreeBSD signal47.patch
  ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:09/signal47.patch

FreeBSD FreeBSD 4.5

• FreeBSD signal47.patch
  ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:09/signal47.patch

FreeBSD FreeBSD 4.6

• FreeBSD signal47.patch
  ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:09/signal47.patch

FreeBSD FreeBSD 4.7

• FreeBSD signal47.patch
  ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:09/signal47.patch


• FreeBSD signal4s.patch
  ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:09/signal4s.patch

FreeBSD FreeBSD 4.8

• FreeBSD signal4s.patch
  ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:09/signal4s.patch

FreeBSD FreeBSD 5.0

• FreeBSD signal50.patch
  ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:09/signal50.patch

FreeBSD FreeBSD 5.1

• FreeBSD signal51.patch
  ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:09/signal51.patch