| version 1.467, 2003/11/21 02:34:01 |
version 1.468, 2003/11/21 13:09:32 |
|
|
| <meta name="keywords" content="openbsd,cd,errata"> |
<meta name="keywords" content="openbsd,cd,errata"> |
| <meta name="distribution" content="global"> |
<meta name="distribution" content="global"> |
| <meta name="copyright" content="This document copyright 1997-2003 by OpenBSD."> |
<meta name="copyright" content="This document copyright 1997-2003 by OpenBSD."> |
| |
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"> |
| </head> |
</head> |
| |
|
| <BODY BGCOLOR="#FFFFFF" TEXT="#000000" LINK="#23238E"> |
<BODY BGCOLOR="#FFFFFF" TEXT="#000000" LINK="#23238E"> |
|
|
| consult the <a href="./faq/faq10.html#Patches">OpenBSD FAQ</a>. |
consult the <a href="./faq/faq10.html#Patches">OpenBSD FAQ</a>. |
| <hr> |
<hr> |
| |
|
| <dl> |
<a name="all"></a> |
| <a name=all></a> |
<h3><font color="#e00000">All architectures</font></h3> |
| <li><h3><font color="#e00000">All architectures</font></h3> |
|
| <ul> |
<ul> |
| <a name=sem></a> |
<li><a name="sem"></a> |
| <li><font color="#009000"><strong>008: RELIABILITY FIX: November 20, 2003</strong></font><br> |
<font color="#009000"><strong>008: RELIABILITY FIX: November 20, 2003</strong></font><br> |
| An improper bounds check makes it possible for a local user to cause a crash |
An improper bounds check makes it possible for a local user to cause a crash |
| by passing the |
by passing the |
| <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semctl&apropos=0&sektion=2&manpath=OpenBSD+Current&arch=i386&format=html">semctl(2)</a> and |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semctl&apropos=0&sektion=2&manpath=OpenBSD+Current&arch=i386&format=html">semctl(2)</a> and |
| <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semop&apropos=0&sektion=2&manpath=OpenBSD+Current&arch=i386&format=html">semop(2)</a> functions |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=semop&apropos=0&sektion=2&manpath=OpenBSD+Current&arch=i386&format=html">semop(2)</a> functions |
| certain arguments. |
certain arguments. |
| <br> |
<br> |
| <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/008_sem.patch"> |
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/008_sem.patch"> |
| A source code patch exists which remedies the problem</a>.<br> |
A source code patch exists which remedies the problem</a>.<br> |
| <p> |
<p> |
| <a name=uvm></a> |
<a name="uvm"></a> |
| <li><font color="#009000"><strong>007: RELIABILITY FIX: November 20, 2003</strong></font><br> |
<li><font color="#009000"><strong>007: RELIABILITY FIX: November 20, 2003</strong></font><br> |
| It is possible for a local user to cause a crash via |
It is possible for a local user to cause a crash via |
| <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl&apropos=0&sektion=3&manpath=OpenBSD+Current&arch=i386&format=html">sysctl(3)</a> with certain arguments. |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl&apropos=0&sektion=3&manpath=OpenBSD+Current&arch=i386&format=html">sysctl(3)</a> with certain arguments. |
| <br> |
<br> |
| <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/007_uvm.patch"> |
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/007_uvm.patch"> |
| A source code patch exists which remedies the problem</a>.<br> |
A source code patch exists which remedies the problem</a>.<br> |
| <p> |
<p> |
| <a name=exec></a> |
<a name="exec"></a> |
| <li><font color="#009000"><strong>005: RELIABILITY FIX: November 4, 2003</strong></font><br> |
<li><font color="#009000"><strong>005: RELIABILITY FIX: November 4, 2003</strong></font><br> |
| It is possible for a local user to cause a system panic by executing a specially crafted binary with an invalid header. |
It is possible for a local user to cause a system panic by executing a specially crafted binary with an invalid header. |
| <br> |
<br> |
| <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/005_exec.patch"> |
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/005_exec.patch"> |
| A source code patch exists which remedies the problem</a>.<br> |
A source code patch exists which remedies the problem</a>.<br> |
| <p> |
<p> |
| <a name=httpd></a> |
<a name="httpd"></a> |
| <li><font color="#009000"><strong>004: RELIABILITY FIX: November 1, 2003</strong></font><br> |
<li><font color="#009000"><strong>004: RELIABILITY FIX: November 1, 2003</strong></font><br> |
| A user with write permission to <tt>httpd.conf</tt> or a <tt>.htaccess</tt> |
A user with write permission to <tt>httpd.conf</tt> or a <tt>.htaccess</tt> |
| file can crash |
file can crash |
|
|
| <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/004_httpd.patch"> |
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/004_httpd.patch"> |
| A source code patch exists which remedies the problem</a>.<br> |
A source code patch exists which remedies the problem</a>.<br> |
| <p> |
<p> |
| <a name=arp></a> |
<a name="arp"></a> |
| <li><font color="#009000"><strong>003: RELIABILITY FIX: November 1, 2003</strong></font><br> |
<li><font color="#009000"><strong>003: RELIABILITY FIX: November 1, 2003</strong></font><br> |
| It is possible for a local user to cause a system panic by flooding it with spoofed ARP |
It is possible for a local user to cause a system panic by flooding it with spoofed ARP |
| requests.<br> |
requests.<br> |
| <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/003_arp.patch"> |
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/003_arp.patch"> |
| A source code patch exists which remedies the problem</a>.<br> |
A source code patch exists which remedies the problem</a>.<br> |
| <p> |
<p> |
| <a name=asn1></a> |
<a name="asn1"></a> |
| <li><font color="#009000"><strong>002: SECURITY FIX: November 1, 2003</strong></font><br> |
<li><font color="#009000"><strong>002: SECURITY FIX: November 1, 2003</strong></font><br> |
| The use of certain ASN.1 encodings or malformed public keys may allow an |
The use of certain ASN.1 encodings or malformed public keys may allow an |
| attacker to mount a denial of service attack against applications linked with |
attacker to mount a denial of service attack against applications linked with |
|
|
| <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/002_asn1.patch"> |
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/002_asn1.patch"> |
| A source code patch exists which remedies the problem</a>.<br> |
A source code patch exists which remedies the problem</a>.<br> |
| <p> |
<p> |
| <a name=cd_booklet></a> |
<a name="cd_booklet"></a> |
| <li><font color="#009000"><strong>001: DOCUMENTATION FIX: November 1, 2003</strong></font><br> |
<li><font color="#009000"><strong>001: DOCUMENTATION FIX: November 1, 2003</strong></font><br> |
| The CD insert documentation has an incorrect example for package installation.<br> |
The CD insert documentation has an incorrect example for package installation.<br> |
| Where it is written:<p> |
Where it is written:<p> |
|
|
| <p> |
<p> |
| </ul> |
</ul> |
| <p> |
<p> |
| <a name=i386></a> |
<a name="i386"></a> |
| <li><h3><font color="#e00000">i386</font></h3> |
<h3><font color="#e00000">i386</font></h3> |
| <ul> |
<ul> |
| <a name=ibcs2></a> |
<li><a name="ibcs2"></a> |
| <li><font color="#009000"><strong>006: SECURITY FIX: November 17, 2003</strong></font><br> |
<font color="#009000"><strong>006: SECURITY FIX: November 17, 2003</strong></font><br> |
| It may be possible for a local user to overrun the stack in |
It may be possible for a local user to overrun the stack in |
| <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=compat_ibcs2&sektion=8&apropos=0&manpath=OpenBSD+Current&arch=i386">compat_ibcs2(8)</a>.<br> |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=compat_ibcs2&sektion=8&apropos=0&manpath=OpenBSD+Current&arch=i386">compat_ibcs2(8)</a>.<br> |
| ProPolice catches this, turning a potential privilege escalation into a denial |
ProPolice catches this, turning a potential privilege escalation into a denial |
| of service. iBCS2 emulation does not need to be enabled via |
of service. iBCS2 emulation does not need to be enabled via |
| <a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl&sektion=8&apropos=0&manpath=OpenBSD+Current&arch=i386">sysctl(8)</a> |
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sysctl&sektion=8&apropos=0&manpath=OpenBSD+Current&arch=i386">sysctl(8)</a> |
| for this to happen. |
for this to happen. |
| <br> |
<br> |
| <a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/i386/006_ibcs2.patch"> |
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/i386/006_ibcs2.patch"> |
|
|
| <p> |
<p> |
| </ul> |
</ul> |
| <p> |
<p> |
| <a name=alpha></a> |
<a name="alpha"></a> |
| <li><h3><font color="#e00000">alpha</font></h3> |
<h3><font color="#e00000">alpha</font></h3> |
| <ul> |
<ul> |
| <li>No problems identified yet. |
<li>No problems identified yet. |
| </ul> |
</ul> |
| <p> |
<p> |
| <a name=mac68k></a> |
<a name="mac68k"></a> |
| <li><h3><font color="#e00000">mac68k</font></h3> |
<h3><font color="#e00000">mac68k</font></h3> |
| <ul> |
<ul> |
| <li>No problems identified yet. |
<li>No problems identified yet. |
| </ul> |
</ul> |
| <p> |
<p> |
| <a name=sparc></a> |
<a name="sparc"></a> |
| <li><h3><font color="#e00000">sparc</font></h3> |
<h3><font color="#e00000">sparc</font></h3> |
| <ul> |
<ul> |
| <li>No problems identified yet. |
<li>No problems identified yet. |
| </ul> |
</ul> |
| <p> |
<p> |
| <a name=sparc64></a> |
<a name="sparc64"></a> |
| <li><h3><font color="#e00000">sparc64</font></h3> |
<h3><font color="#e00000">sparc64</font></h3> |
| <ul> |
<ul> |
| <li>No problems identified yet. |
<li>No problems identified yet. |
| </ul> |
</ul> |
| <p> |
<p> |
| <a name=hppa></a> |
<a name="hppa"></a> |
| <li><h3><font color="#e00000">hppa</font></h3> |
<h3><font color="#e00000">hppa</font></h3> |
| <ul> |
<ul> |
| <li>No problems identified yet. |
<li>No problems identified yet. |
| </ul> |
</ul> |
| <p> |
<p> |
| <a name=hp300></a> |
<a name="hp300"></a> |
| <li><h3><font color="#e00000">hp300</font></h3> |
<h3><font color="#e00000">hp300</font></h3> |
| <ul> |
<ul> |
| <li>No problems identified yet. |
<li>No problems identified yet. |
| </ul> |
</ul> |
| <p> |
<p> |
| <a name=mvme68k></a> |
<a name="mvme68k"></a> |
| <li><h3><font color="#e00000">mvme68k</font></h3> |
<h3><font color="#e00000">mvme68k</font></h3> |
| <ul> |
<ul> |
| <li>No problems identified yet. |
<li>No problems identified yet. |
| </ul> |
</ul> |
| <p> |
<p> |
| <a name=macppc></a> |
<a name="macppc"></a> |
| <li><h3><font color="#e00000">macppc</font></h3> |
<h3><font color="#e00000">macppc</font></h3> |
| <ul> |
<ul> |
| <li>No problems identified yet. |
<li>No problems identified yet. |
| </ul> |
</ul> |
| <p> |
<p> |
| <a name=vax></a> |
<a name="vax"></a> |
| <li><h3><font color="#e00000">vax</font></h3> |
<h3><font color="#e00000">vax</font></h3> |
| <ul> |
<ul> |
| <li>No problems identified yet. |
<li>No problems identified yet. |
| </ul> |
</ul> |
| |
|
| </dl> |
|
| <br> |
<br> |
| |
|
| <hr> |
<hr> |
![[BACK]](/icons/back.gif){kind=icon}
Return to errata.html CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www