BSD Kernel ProcFS Handler UIO_Offset Integer Overflow Vulnerability Solution:
FreeBSD has released advisory FreeBSD-SA-03:17.procfs to address this issue. Please see the referenced advisory for further details regarding the application of a relative patch. Patches are linked below. The issue has also been addressed in the latest CVS tree entry.
OpenBSD has released a patch for versions 3.4 and 3.5 of the operating system. Please see the referenced web files to obtain the patch.
FreeBSD FreeBSD 4.3 -STABLE
FreeBSD FreeBSD 4.3 -RELEASE-p38
FreeBSD FreeBSD 4.3
FreeBSD FreeBSD 4.3 -RELEASE
FreeBSD FreeBSD 4.3 -RELENG
FreeBSD FreeBSD 4.4 -RELENG
FreeBSD FreeBSD 4.4 -RELEASE-p42
FreeBSD FreeBSD 4.4
FreeBSD FreeBSD 4.4 -STABLE
FreeBSD FreeBSD 4.4 -RELENG
FreeBSD FreeBSD 4.5 -RELEASE-p32
FreeBSD FreeBSD 4.5
FreeBSD FreeBSD 4.5 -STABLEpre2002-03-07
FreeBSD FreeBSD 4.5 -STABLE
FreeBSD FreeBSD 4.5 -RELEASE
FreeBSD FreeBSD 4.5 -RELENG
FreeBSD FreeBSD 4.6 -RELEASE-p20
FreeBSD FreeBSD 4.6 -RELENG
FreeBSD FreeBSD 4.6 -RELEASE
FreeBSD FreeBSD 4.6 -STABLE
FreeBSD FreeBSD 4.6
FreeBSD FreeBSD 4.6.2
FreeBSD FreeBSD 4.7 -RELEASE-p17
FreeBSD FreeBSD 4.7 -RELENG
FreeBSD FreeBSD 4.7 -RELEASE
FreeBSD FreeBSD 4.7
FreeBSD FreeBSD 4.7 -STABLE
FreeBSD FreeBSD 4.8 -RELENG
FreeBSD FreeBSD 4.8 -PRERELEASE
FreeBSD FreeBSD 4.8 -RELEASE-p7
FreeBSD FreeBSD 4.8
FreeBSD FreeBSD 4.9 -PRERELEASE
FreeBSD FreeBSD 5.0
FreeBSD FreeBSD 5.0 -RELENG
FreeBSD FreeBSD 5.0 -RELEASE-p14
FreeBSD FreeBSD 5.1
FreeBSD FreeBSD 5.1 -RELENG
FreeBSD FreeBSD 5.1 -RELEASE-p5
