1. 14

  2. 10

    The ping process runs in a capability mode sandbox on all affected versions of FreeBSD and is thus very constrainted in how it can interact with the rest of the system at the point where the bug can occur.

    Score one for capsicum!

    1. 7

      Meh. My FreeBSD desktop is unaffected.

      1. 2

        Not to imply that cheri isn’t cool, but memory safety is table stakes. Cap safety is more interesting (what about logic bugs?). (Not that unix is set up to let you do a good job of anything, but…)

        1. 5

          CHERI is also a capability system. You can use it in combination with Capsicum in some interesting ways, but also use it to sandbox parts of code, such as the packet-parsing bits of ping.