NetBSD-Bugs archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: lib/49349: OpenSSL unaligned access during DATA decryption in Postfix smtpd



The following reply was made to PR lib/49349; it has been noted by GNATS.

From: "Erik E. Fair" <fair%netbsd.org@localhost>
To: gnats-bugs%NetBSD.org@localhost
Cc: lib-bug-people%netbsd.org@localhost, netbsd-bugs%netbsd.org@localhost
Subject: Re: lib/49349: OpenSSL unaligned access during DATA decryption in Postfix smtpd
Date: Fri, 31 Oct 2014 17:20:34 -0700

 Apparently not:
 
 # sysctl -w kern.coredump.setid.dump=1
 sysctl: kern.coredump.setid.dump: Operation not permitted
 
 Or is that a securelevel thing? (sigh) I'll stick that in /etc/sysctl.conf
 and reboot.
 
 I'll also ask the user to trigger another such E-mail from Microsoft; my
 work-around permitted the errant messages to be delivered, so there's nothing
 triggering the bug right this second.
 
 But the necessary code review should begin anon. Or perhaps it could be fed
 to a static analyzer? You already know which cipher to look at from the log
 messages I included in the intial PR.
 
 	Erik <fair%netbsd.org@localhost>
 


Home | Main Index | Thread Index | Old Index