Apply by doing:
       cd /usr/src
       patch -p0 < 006_ibcs2.patch
And then rebuild your kernel.

Index: sys/compat/ibcs2/ibcs2_exec.c
===================================================================
RCS file: /cvs/src/sys/compat/ibcs2/ibcs2_exec.c,v
retrieving revision 1.14.6.1
retrieving revision 1.14.6.2
diff -u -r1.14.6.1 -r1.14.6.2
--- sys/compat/ibcs2/ibcs2_exec.c       3 Nov 2003 23:23:50 -0000       1.14.6.1
+++ sys/compat/ibcs2/ibcs2_exec.c       17 Nov 2003 16:41:19 -0000      1.14.6.2
@@ -425,11 +425,14 @@
               size_t resid;
               struct coff_slhdr *slhdr;
               char buf[128], *bufp;   /* FIXME */
-               int len = sh.s_size, path_index, entry_len;
+               unsigned int len = sh.s_size, path_index, entry_len;

               /* DPRINTF(("COFF shlib size %d offset %d\n",
                        sh.s_size, sh.s_scnptr)); */

+               if (len > sizeof(buf))
+                       return (ENOEXEC);
+
               error = vn_rdwr(UIO_READ, epp->ep_vp, (caddr_t) buf,
                               len, sh.s_scnptr,
                               UIO_SYSSPACE, IO_NODELOCKED, p->p_ucred,
@@ -446,6 +449,9 @@

                       /* DPRINTF(("path_index: %d entry_len: %d name: %s\n",
                                path_index, entry_len, slhdr->sl_name)); */
+
+                       if (entry_len > len)
+                               return (ENOEXEC);

                       error = coff_load_shlib(p, slhdr->sl_name, epp);
                       if (error)

You are viewing proxied material from ftp.icm.edu.pl. The copyright of proxied material belongs to its original authors. Any comments or complaints in relation to proxied material should be directed to the original authors of the content concerned. Please see the disclaimer for more details.