---
- branch: netbsd-5
  date: Thu Dec 10 23:10:38 UTC 2009
  files:
  - new: 1.155.4.3
    old: 1.155.4.2
    path: src/sys/kern/kern_time.c
    pathrev: src/sys/kern/kern_time.c@1.155.4.3
    type: modified
  id: 20091210T231038Z.882231d6faf046773650a0526a4ef0f7a63562f9
  log: "Pull up following revision(s) (requested by drochner in ticket #1189):\n\tsys/kern/kern_time.c:
    revision 1.163\nIf a struct sigevent with SIGEV_SIGNAL is passed to timer_create(2),\ncheck
    the signal number to be in the allowed range. An invalid\nsignal number could
    crash the kernel by overflowing the sigset_t\narray.\nMore checks would be good,
    and SIGEV_THREAD shouldn't be dropped\nsilently, but this fixes at least the local
    DOS vulnerability.\n"
  module: src
  subject: 'CVS commit: [netbsd-5] src/sys/kern'
  unixtime: '1260486638'
  user: snj