version 1.522, 2005/01/08 15:08:17 |
version 1.523, 2005/01/12 06:07:41 |
|
|
<a name="all"></a> |
<a name="all"></a> |
<h3><font color="#e00000">All architectures</font></h3> |
<h3><font color="#e00000">All architectures</font></h3> |
<ul> |
<ul> |
|
<li><a name="rtt"></a> |
|
<font color="#009000"><strong>010: RELIABILITY FIX: January 10, 2005</strong></font><br> |
|
A bug in the |
|
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=tcp&apropos=0&sektion=4&manpath=OpenBSD+Current&arch=i386&format=html">tcp(4)</a> |
|
stack allows an invalid argument to be used in in calculating the TCP |
|
retransmit timeout. By sending packets with specific values in the TCP |
|
timestamp option, an attacker can cause a system panic. |
|
<br> |
|
<a href="ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.6/common/010_rtt.patch"> |
|
A source code patch exists which remedies this problem</a>.<br> |
|
<p> |
|
|
<li><a name="getcwd"></a> |
<li><a name="getcwd"></a> |
<font color="#009000"><strong>008: RELIABILITY FIX: January 6, 2005</strong></font><br> |
<font color="#009000"><strong>008: RELIABILITY FIX: January 6, 2005</strong></font><br> |
The |
The |